Administrator Guide
Layer 2 Switching Commands 281
console(config-arp-access-list)#permit ip host 1.1.1.2 mac host
00:03:04:05:06:07
console(config-arp-access-list)#permit ip host 2.1.1.2 mac host
00:03:04:05:06:08
console(config-arp-access-list)#remark “test4”
console(config-arp-access-list)#remark “test5”
console(config-arp-access-list)#permit ip host 2.1.1.3 mac host
00:03:04:05:06:01
service-acl input
Use the service-acl input command in Interface Configuration mode to block
Link Local Protocol Filtering (LLPF) protocol(s) on a given port. Use the no
form of this command to unblock link-local protocol(s) on a given port.
Syntax
service-acl input {blockcdp | blockvtp | blockdtp | blockudld | blockpagp |
blocksstp | blockall}
no service-acl input
•
blockcdp
—
To block CDP PDU’s from being forwarded.
•
blockvtp
—
To block VTP PDU’s from being forwarded.
•
blockdtp
—
To block DTP PDU’s from being forwarded.
•
blockudld
—
To block UDLD PDU’s from being forwarded.
•
blockpagp
—
To block PAgP PDU’s from being forwarded.
•
blocksstp
—
To block SSTP PDU’s from being forwarded.
•
blockall
—
To block all the PDU’s with MAC of 01:00:00:0c:cc:cx (x-don’t care)
from being forwarded.
Default Configuration
The default is that none of the listed protocol PDUs are blocked.
Command Mode
Interface Configuration (Ethernet, Port-channel)
2CSNXXX_SWUM204.book Page 281 Monday, January 25, 2016 1:25 PM