beautypg.com

Brocade TurboIron 24X Series Configuration Guide User Manual

Page 296

background image

262

Brocade TurboIron 24X Series Configuration Guide

53-1003053-01

Defining MAC address filters

The | any parameter specifies the source MAC address. You can enter a
specific address value and a comparison mask or the keyword any to filter on all MAC addresses.
Specify the mask using (ones) and zeros. For example, to match on the first two bytes of the
address aabb.ccdd.eeff, use the mask ffff.0000.0000. In this case, the filter matches on all MAC
addresses that contain "aabb" as the first two bytes. The filter accepts any value for the remaining
bytes of the MAC address. If you specify any, do not specify a mask. In this case, the filter matches
on all MAC addresses.

The | any parameter specifies the destination MAC address. The syntax rules
are the same as those for the | any parameter.

Syntax: [no] mac filter log-enable

Globally enables logging for filtered packets.

Syntax: [no] mac filter-group log-enable

Enables logging for filtered packets on a specific port.

Syntax: [no] mac filter-group

Applies MAC filters to a port.

You can filter packets based on the Ethernet type using the new etype optional keyword.

Syntax: [no] mac filter permit | deny | any |

any [etype ]

eq - Matches packet with a given Ethernet type

gt - Matches packet with a greater Ethernet type

lt - Matches packet with a lower Ethernet type

neq - Matches packet not with a given Ethernet type

NOTE

The filters must be applied as a group. For example, if you want to apply four filters to an interface,
they must all appear on the same command line.

NOTE

You cannot add or remove individual filters in the group. To add or remove a filter on an interface,
apply the filter group again containing all the filters you want to apply to the port.

NOTE

If you apply a filter group to a port that already has a filter group applied, the older filter group is
replaced by the new filter group.

When a MAC filter is applied to or removed from an interface, a Syslog message such as the
following is generated.

SYSLOG: <14>Jan 1 00:00:00 10.44.9.11 MAC Filter applied to port 2 by tester from

telnet session (filter id=5 ).

SYSLOG: <14>Jan 1 00:00:00 10.44.9.11 MAC Filter removed from port 2 by tester

from telnet session (filter id=5 ).

The Syslog messages indicate that a MAC filter was applied to the specified port by the specified
user during the specified session type. Session type can be Console, Telnet, SSH, Web, SNMP, or
others. The filter IDs that were added or removed are listed.

See also other documents in the category Brocade Computer Accessories: