Reference v4.1.0 Instruction Manual
Network OS Command Reference 651
53-1003115-01
seq (standard MAC ACLs)
2
seq (standard MAC ACLs)
Inserts a rule anywhere in the MAC ACL.
Synopsis seq value [deny | permit | hard-drop] [any | host MAC_ADDRESS| MAC_ADDRESS] [count]
no seq value
Operands value Specifies the sequence number for the rule. Valid values range from 0
through 65535.
permit Specifies rules to permit traffic.
deny Specifies rules to deny traffic.
any Specifies any source MAC address.
host MAC_ADDRESS
Specifies the source host MAC address for which to set permit or deny
conditions. Use the format HHHH.HHHH.HHHH.
MAC_ADDRESS Specifies the destination host MAC address for which to set permit or deny
conditions. Use the format HHHH.HHHH.HHHH.
count Enables the counting of the packets matching the rule.
hard-drop Overrides the trap behavior for control frames and data frames such as
echo request (ping).
Defaults No MAC ACLs are configured.
Command Modes Feature Access Control List configuration mode
Description Use this command to configure rules to match and permit or drop traffic based on source and
destination MAC address and protocol type. You can also enable counters for a specific rule. There
are 255 ACL counters supported per port group.
Usage Guidelines Enter no seq value to remove a rule from the MAC ACL.
Examples To create a rule in a MAC standard ACL to permit or to drop traffic from the source MAC address
0022.3333.4444
and to enable the counting of packets:
switch(conf-macl-std)# seq 100 deny 0022.3333.4444 count
switch(conf-macl-std)# seq 1000 permit 0022.3333.4444 count
To delete a filter rule in a MAC standard ACL:
switch(conf-macl-std)# no seq 100
See Also deny (extended ACLs), permit (extended ACLs), permit (standard ACLs), resequence access-list