Owner's Manual

ManualsBrandsNetgear ManualsHubsNetgear XCM8806

301

302

303

304

305

306

307

308

309

310

Chapter 13. ACLs | 307

NETGEAR 8800 User Manual

ethernet-source-address

<mac-address> mask <mask>

ethernet-source-address

<mac-address> / <mask>

Ethernet source MAC address and mask. The mask is

optional, and is in the same format as the MAC address, for

example:

ethernet-source-address 00:01:02:03:01:01 mask

ff:ff:ff:ff:00:00

ethernet-source-address 00:01:02:03:01:01 /

ff:ff:ff:ff:00:00

Only those bits of the MAC address whose corresponding bit

in the mask is set to 1 will be used as match criteria. So, the

example above will match 00:01:02:03:xx:xx.

If the mask is not supplied then it will be assumed to be

ff:ff:ff:ff:ff:ff. In other words, all bits of the MAC address will be

used for matching.

Ethernet/Ingress

only

ethernet-destination-address

<mac-address>

Ethernet destination MAC address Ethernet/Ingress

only

ethernet-destination-address

<mac-address> mask <mask>

ethernet-destination-address

<mac-address> / <mask>

Ethernet destination MAC address and mask. The mask is

optional, and is in the same format as the MAC address, for

example:

ethernet-destination-address

00:01:02:03:01:01 mask ff:ff:ff:ff:00:00

ethernet-destination-address

00:01:02:03:01:01 / ff:ff:ff:ff:00:00

Only those bits of the MAC address whose corresponding bit

in the mask is set to 1 will be used as match criteria. So, the

example above will match 00:01:02:03:xx:xx.

If the mask is not supplied then it will be assumed to be

ff:ff:ff:ff:ff:ff. In other words, all bits of the MAC address will be

used for matching.

Ethernet/Ingress

only

source-address <prefix> IP source address and mask. Egress ACLs do not support

IPv6 addresses, only IPv4 addresses. Use either all IPv4 or all

IPv6 addresses in an ACL.

All IP/Ingress and

Egress

destination-address <prefix> IP destination address and mask. Egress ACLs do not support

IPv6 addresses, only IPv4 addresses. Use either all IPv4 or all

IPv6 addresses in an ACL.

All IP/Ingress and

Egress

Source-port {<number> |

<range>}

TCP or UDP source port. You must also specify the protocol

match condition to determine which protocol is being used on

the port, any time you use the this match condition. In place of

the numeric value, you can specify one of the text synonyms

listed under destination port. If no source-port is specified, the

default source-port is “any.”

TCP, UDP/Ingress

and Egress

Table 31. ACL Match Conditions (Continued)

Match Conditions Description Applicable 

IP Protocols/

Direction