Brocade Converged Enhanced Ethernet Administrator's Guide v6.1.2_cee (53-1001258-01, June 2009)
Table Of Contents
- Contents
- Figures
- Tables
- About This Document
- Introducing FCoE
- Using the CEE CLI
- In this chapter
- CEE CLI configuration guidelines and restrictions
- Using the CEE command line interface (CLI)
- CEE CLI RBAC permissions
- Accessing the CEE CLI through the console interface or through a Telnet session
- Accessing the CEE CLI from the Fabric OS shell
- Accessing CEE CLI command modes
- Using CEE CLI keyboard shortcuts
- Displaying CEE CLI commands and command syntax
- Using CEE CLI command completion
- CEE CLI command syntax conventions
- Using CEE CLI command output modifiers
- Configuring VLANs Using the CEE CLI
- In this chapter
- VLAN overview
- Ingress VLAN filtering
- VLAN configuration guidelines and restrictions
- Default VLAN configuration
- VLAN configuration procedures
- Enabling and disabling a CEE interface
- Configuring the MTU on a CEE interface
- Creating a VLAN interface
- Configuring a VLAN interface to forward FCoE traffic
- Configuring a CEE interface as a Layer 2 switch port
- Configuring a CEE interface as an access interface or a trunk interface
- Configuring VLAN classifier rules
- Configuring VLAN classifier groups
- Associating a VLAN classifier group to a CEE interface
- Clearing VLAN counter statistics
- Displaying VLAN information
- Configuring the MAC address table
- Configuring STP, RSTP, and MSTP using the CEE CLI
- In this chapter
- STP overview
- RSTP overview
- MSTP overview
- STP, RSTP, and MSTP configuration guidelines and restrictions
- Default STP, RSTP, and MSTP configuration
- STP, RSTP, and MSTP configuration procedures
- STP, RSTP, and MSTP-specific configuration procedures
- STP and RSTP-specific configuration procedures
- RSTP and MSTP-specific configuration procedures
- MSTP-specific configuration procedures
- 10-Gigabit Ethernet CEE interface-specific configuration
- Global STP, RSTP, and MSTP-related configuration procedures
- Clearing STP, RSTP, and MSTP-related information
- Displaying STP, RSTP, and MSTP-related information
- Configuring Link Aggregation using the CEE CLI
- Configuring LLDP using the CEE CLI
- Configuring ACLs using the CEE CLI
- In this chapter
- ACL overview
- Default ACL configuration
- ACL configuration guidelines and restrictions
- ACL configuration procedures
- Creating a standard MAC ACL and adding rules
- Creating an extended MAC ACL and adding rules
- Modifying a MAC ACL
- Removing a MAC ACL
- Reordering the sequence numbers in a MAC ACL
- Applying a MAC ACL to a CEE interface
- Applying a MAC ACL to a VLAN interface
- Clearing MAC ACL counters
- Displaying MAC ACL information
- Configuring QoS using the CEE CLI
- Configuring FCoE using the Fabric OS CLI
- Administering the switch
- Configuring RMON using the CEE CLI
- Index
100 Converged Enhanced Ethernet Administrator’s Guide
53-1001258-01
ACL configuration procedures
7
Applying a MAC ACL to a VLAN interface
Ensure that the ACL that you want to apply exists and is configured to filter traffic in the manner
that you need for this VLAN interface. An ACL does not take effect until it is expressly applied to an
interface using the access-group command. Packets can be filtered as they enter an interface
(ingress direction).
To apply a MAC ACL to a VLAN interface, perform the following steps from Privileged EXEC mode:
Clearing MAC ACL counters
To clear MAC ACL counters, perform the following steps from Privileged EXEC mode:
Step Task Command
1. Enter global configuration mode. switch#config t
Enter configuration commands, one per
line. End with CNTL/Z.
switch(config)#
2. Specify the VLAN interface (VLAN 50 is used in
this example).
switch(config)#interface vlan 50
switch(conf-if-vl-50)#
3. Specify the MAC ACL that is to be applied to the
VLAN interface in the ingress direction.
switch(conf-if-te-0/1)#mac
access-group access_list_name in
Step Task Command
1. Clear all the MAC ACL counters for the specified
MAC ACL.
switch#clear counters access-list mac
access_list_name
2. Clear all the MAC ACL counters for the specified
interface where the MAC ACL has been applied.
The port-channel interface number must be in the
range of 1 through 63. The VLAN interface
number must be in the range of 1 through 3583.
switch#clear counters access-list mac
access_list_name [interface
{port-channel
port-channel_interface_number |
tengigabitethernet Slot/Port | vlan
vlan_interface_number}