Seq (standard mac acls) – Brocade Network OS Command Reference v4.1.0 User Manual

Page 689

Network OS Command Reference

651

53-1003115-01

seq (standard MAC ACLs)

Inserts a rule anywhere in the MAC ACL.

Synopsis

seq value [deny | permit | hard-drop] [any | host MAC_ADDRESS| MAC_ADDRESS] [count]

no seq value

Operands

value

Specifies the sequence number for the rule. Valid values range from 0
through 65535.

permit

Specifies rules to permit traffic.

deny

Specifies rules to deny traffic.

any

Specifies any source MAC address.

host MAC_ADDRESS

Specifies the source host MAC address for which to set permit or deny
conditions. Use the format HHHH.HHHH.HHHH.

MAC_ADDRESS

Specifies the destination host MAC address for which to set permit or deny
conditions. Use the format HHHH.HHHH.HHHH.

count

Enables the counting of the packets matching the rule.

hard-drop

Overrides the trap behavior for control frames and data frames such as
echo request (ping).

Defaults

No MAC ACLs are configured.

Command Modes

Feature Access Control List configuration mode

Description

Use this command to configure rules to match and permit or drop traffic based on source and
destination MAC address and protocol type. You can also enable counters for a specific rule. There
are 255 ACL counters supported per port group.

Usage Guidelines

Enter no seq value to remove a rule from the MAC ACL.

Examples

To create a rule in a MAC standard ACL to permit or to drop traffic from the source MAC address
0022.3333.4444

and to enable the counting of packets:

switch(conf-macl-std)# seq 100 deny 0022.3333.4444 count

switch(conf-macl-std)# seq 1000 permit 0022.3333.4444 count

To delete a filter rule in a MAC standard ACL:

switch(conf-macl-std)# no seq 100