beautypg.com

Removing a mac acl, Reordering the sequence numbers in a mac acl, Creating a standard ip acl – Brocade Network OS Administrator’s Guide v4.1.1 User Manual

Page 468

background image

1. Enter the configure terminal command to access global configuration mode.
2. Enter the mac command to specify the ACL called test_02 for modification.

switch(config)# mac access-list extended test_02

3. Enter the no seq command to delete the existing rule 100.

switch (conf-macl-ext)# no seq 100

-or-

Enter the seq command to recreate rule number 100 by recreating it with new parameters.

switch(conf-macl-ext)# seq 100 permit any any

Removing a MAC ACL

A MAC ACL cannot be removed from the system unless the access-group applying the MAC ACL to a
DCB or a VLAN interface is first removed.

To remove a MAC ACL, perform the following steps from privileged EXEC mode.

1. Enter the configure terminal command to access global configuration mode.
2. Enter the mac command to specify and delete the ACL that you want to remove. In this example,

the extended MAC ACL name is "test_02."

switch(config)# no mac access-list extended test_02

Reordering the sequence numbers in a MAC ACL

You can reorder the sequence numbers assigned to rules in a MAC ACL. Reordering the sequence
numbers is useful when you need to insert rules into an ACL and there are not enough available
sequence numbers. The default initial sequence number is 10 and the default increment is 10 for both
standard and extended MAC ACLs.

The first rule receives the number specified by the starting-sequence number that you specify. Each
subsequent rule receives a number larger than the preceding rule. The difference in numbers is
determined by the increment number that you specify. The starting-sequence number and the
increment number must range from 1 through 65535.

For example, in the task listed below the resequence command assigns a sequence number of 50 to
the rule named test_02. The second rule has a sequence number of 55, and the third rule a has a
sequence number of 60. The example is using IPv4.

switch# resequence ip access-list mac test_02 50 5

Creating a standard IP ACL

To create a standard IP ACL, perform the following steps in global configuration mode.

1. Use the ip access-list standard command to enter the configuration mode.

switch(config)# ip access-list standard stdACL3

2. Use the seq command to enter the rules for the ACL. You can enter multiple rules.

switch(config-ip-std)# seq 5 permit host 10.20.33.4

switch(config-ip-std)# seq 15 deny any

3. Use the exit command to return to global configuration mode. Your changes are automatically

saved.

switch(config-ip-std)# exit

switch(config)#

Removing a MAC ACL

468

Network OS Administrator’s Guide

53-1003225-04

See also other documents in the category Brocade Computer Accessories: