Manualshelf

CLI Guide

ManualsBrandsDell ManualsAccess PlatformsPowerSwitch N1500 Series
281282283284285286287288289290
Layer 2 Switching Commands 288
User Guidelines
If the access-list specified in the command does not exist, an error is given.
The ACLs in the access-group are configured in hardware when the interface
becomes active. Resource contention issues will only become apparent at that
time. It is recommended that ACLs be configured on an active interface as a
check prior to deployment in the network.
An optional sequence number may be specified to indicate the order of this
access-list relative to the other access-lists already assigned to this interface
and direction. A lower number indicates higher precedence order. If a
sequence number already is in use for this interface and direction, the
specified access-list replaces the currently attached access list using that
sequence number. If the sequence number is not specified for this command,
a sequence number is selected that is one greater than the highest sequence
number currently in use for this interface and direction.
The optional control-plane keyword allows the application of an egress MAC
ACL on the CPU port.
This command specified in Interface Configuration mode only affects a
single interface.
Example
This example rate limits IPv4 multicast traffic ingressing the front panel ports
to 8 Kbps and a maximum burst of 4 kilobytes.
console(config)# mac access-list extended ipv4-multicast
console(config-mac-access-list)#permit 01:00:5e:00:00:00 00:00:00:ff:ff:ff
any rate-limit 8 4
console(config-mac-access-list)#permit any any
console(config-mac-access-list)#exit
console(config)#mac access-group ipv4-multicast in
mac access-list extended
Use the mac access-list extended command in Global Configuration mode to
create the MAC Access Control List (ACL) identified by the name parameter
and enter MAC Access-list Configuration mode.