Cisco Nexus 5000 Series Switch CLI Software Configuration Guide, NX-OS 4.0(1a)N1 (OL-16597-01, January 2009)

ManualsBrandsHP ManualsStorageCisco MDS 9513 with Supervisor 2 Director Switch

291

292

293

294

295

296

297

298

299

300

Send feedback to nx5000-docfeedback@cisco.com

20-10

Cisco Nexus 5000 Series Switch CLI Software Configuration Guide

OL-16597-01

Chapter 20 Configuring ACLs

Configuring MAC ACLs

Creating a MAC ACL

To create a MAC ACL and add rules to it, perform this task:

The following example shows how to create a MAC ACL and add rules to it:

switch# configure terminal

switch(config)# mac access-list acl-mac-01

switch(config-mac-acl)# permit 00c0.4f00.0000 0000.00ff.ffff any

switch(config-mac-acl)# statistics

switch(config-mac-acl)# show mac access-lists acl-mac-01

switch(config-mac-acl)# copy running-config startup-config

Changing a MAC ACL

In an existing MAC ACL, you can add and remove rules. You cannot change existing rules. Instead, to

change a rule, you can remove it and recreate it with the desired changes.

If you need to add more rules between existing rules than the current sequence numbering allows, you

can use the resequence command to reassign sequence numbers. For more information, see the

“Changing Sequence Numbers in an IP ACL” section on page 20-7.

To change a MAC ACL, perform this task:

Command Purpose

Step 1

switch# configure terminal

Enters configuration mode.

Step 2

switch# mac access-list name

Creates the MAC ACL and enters ACL

configuration mode.

Step 3

switch(config-mac-acl)# {permit | deny}

source destination protocol

Creates a rule in the MAC ACL.

The permit and deny options support many ways of

identifying traffic. For more information, see the

Cisco Nexus 5000 Series Command Reference.

Step 4

switch(config-mac-acl)# statistics

(Optional) Specifies that the switch maintains

global statistics for packets matching the rules in

the ACL.

Step 5

switch(config-mac-acl)# show mac

access-lists name

(Optional) Displays the MAC ACL configuration.

Step 6

switch(config-mac-acl)# copy

running-config startup-config

(Optional) Copies the running configuration to the

startup configuration.

Command Purpose

Step 1

switch# configure terminal

Enters configuration mode.

Step 2

switch(config)# mac access-list name

Enters ACL configuration mode for the ACL that

you specify by name.