Service Manual
Common MAC Access List Commands
The following commands are available within both MAC ACL modes (Standard and Extended) and do not have mode-specific options.
These commands allow you to clear, display, and assign MAC ACL configurations. The MAC ACL can be applied on Physical, Port-channel
and VLAN interfaces. As per the stipulated rules in the ACL, the traffic on the Interface/VLAN members or Port-channel members will be
permitted or denied.
The switch supports both Ingress and Egress MAC ACLs.
clear counters mac access-group
Clear counters for all or a specific MAC ACL.
Syntax
clear counters mac access-group [mac-list-name]
Parameters
mac-list-name (OPTIONAL) Enter the name of a configured MAC access list.
Command Modes EXEC Privilege
Command History
Version Description
9.9(0.0) Introduced on the FN IOM.
8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
mac access-group
Apply a MAC ACL to traffic entering or exiting an interface. Enter into the Interface mode and apply the MAC ACL in the following
manner.
Syntax
mac access-group access-list-name {in [vlan vlan-range] | out}
To delete a MAC access-group, use the no mac access-group mac-list-name command.
Parameters
access-list-name Enter the name of a configured MAC access list, up to 140 characters.
vlan vlan-range (OPTIONAL) Enter the keyword vlan and then enter a range of VLANs. The range is
from 1 to 4094 (you can use IDs 1 to 4094).
NOTE: This option is available only with the keywordin option.
in Enter the keyword in to configure the ACL to filter incoming traffic.
out Enter the keyword out to configure the ACL to filter outgoing traffic.
Defaults none
Command Modes INTERFACE
Command History
Version Description
9.9(0.0) Introduced on the FN IOM.
172 Access Control Lists (ACL)