Cisco Nexus 5000 Series Command Reference Release 4.0(1a)N2(1) (OL-16599-01, March 2009)
Send comments to nx5000-docfeedback@cisco.com
6-51
Cisco Nexus 5000 Series Command Reference
OL-16599-01
Chapter 6 Security Commands
match
match
To specify an access control list (ACL) for traffic filtering in a VLAN access map, use the match
command. To remove a match command from a VLAN access map, use the no form of this command.
match {ip | ipv6 | mac} address access-list-name
no match {ip | ipv6 | mac} address access-list-name
Syntax Description
Command Default By default, the switch classifies traffic and applies IPv4 ACLs to IPv4 traffic and MAC ACLs to all other
traffic.
Command Modes VLAN access-map configuration.
Command History
Usage Guidelines You can specify only one match command per access map.
Examples This example creates a VLAN access map named vlan-map-01, assigns an IPv4 ACL named ip-acl-01
to the map, specifies that the switch forwards packets matching the ACL, and enables statistics for traffic
matching the map:
switch(config)# vlan access-map vlan-map-01
switch(config-access-map)# match ip address ip-acl-01
switch(config-access-map)# action forward
switch(config-access-map)# statistics
Related Commands
ip The specified ACL is an IPv4 ACL.
ipv6 Configures IPv6 features
mac The specified ACL is a MAC ACL.
address
access-list-name
Specifies the ACL.
Release Modification
4.0(0)N1(1a) This command was introduced.
Command Description
action Specifies an action for traffic filtering in a VLAN access map.
show vlan access-map Displays all VLAN access maps or a VLAN access map.
show vlan filter Displays information about how a VLAN access map is applied.
vlan access-map Configures a VLAN access map.
vlan filter Applies a VLAN access map to one or more VLANs.