Administrator Guide
Layer 2 Switching Commands 286
service-acl input
Use the service-acl input command in Interface Configuration mode to block
Link Local Protocol Filtering (LLPF) protocol(s) on a given port. Use the no
form of this command to unblock link-local protocol(s) on a given port.
Syntax
service-acl input {blockcdp | blockvtp | blockdtp | blockudld | blockpagp |
blocksstp | blockall}
no service-acl input [blockcdp | blockvtp | blockdtp | blockudld |
blockpagp | blocksstp | blockall]
•
blockcdp
—
To block CDP PDU’s from being forwarded.
•
blockvtp
—
To block VTP PDU’s from being forwarded.
•
blockdtp
—
To block DTP PDU’s from being forwarded.
•
blockudld
—
To block UDLD PDU’s from being forwarded.
•
blockpagp
—
To block PAgP PDU’s from being forwarded.
•
blocksstp
—
To block SSTP PDU’s from being forwarded.
•
blockall
—
To block all the PDU’s with MAC of 01:00:00:0c:cc:cx (x-don’t care)
from being forwarded.
Default Configuration
The default is that none of the listed protocol PDUs are blocked. UDLD is
blocked by default. No other protocol is blocked by default.
Command Mode
Interface Configuration (Ethernet, Port-channel)
User Guidelines
To specify multiple protocols, enter the protocol parameters together on the
command line, separated by spaces. This command may be entered multiple
times and will block all protocols identified in the arguments. This command
is not supported on the N1500 Series switches.
Example
console(config-if-Te1/0/1)#service-acl input blockall