Allied Telesis AT-8100 Series User Manual

Chapter 98: Advanced Access Control Lists (ACLs)

1540



copy-to-mirror— Copies all ingress packets that match the ACL to
the destination port of the mirror port. This action must be used
together with the port mirror feature, explained in Chapter 27, “Port
Mirror” on page 465.

The src_mac_address parameter specifies the source MAC address of
the ingress packets. Here are the possible options:



src_mac_address— Specifies the source MAC address of the
packets. The address must be entered in hexadecimal in one of
the following formats: xx:xx:xx:xx:xx:xx or xxxx.xxxx.xxxx



any— Matches any source MAC address.

The src_mac_mask parameter specifies the source MAC address mask.
The mask must be entered in one of the following formats:
xx:xx:xx:xx:xx:xx or xxxx.xxxx.xxxx

The “x” variable can be either “0” or “F”. Use a “0” mask to indicate the
parts of the MAC address the ACL is to filter. Use an “F” mask for parts of
the MAC address the ACL should ignore.

Note

Do not include a mask if you specified ANY as the source MAC
address.

The dst_mac_address parameter specifies the destination MAC address
of the ingress packets. Here are the possible options:



dst_mac_address— Specifies the destination MAC address of the
packets. The address must be entered in hexadecimal in one of
the following formats: xx:xx:xx:xx:xx:xx or xxxx.xxxx.xxxx



any— Matches any destination MAC address.

The dst_mac_mask parameter specifies the destination MAC address
mask. The mask must be entered in one of the following formats:
xx:xx:xx:xx:xx:xx or xxxx.xxxx.xxxx

The “x” variable can be either “0” or “F”. Use a “0” mask for parts of the
MAC address the ACL is to filter. Use an “F” mask for parts of the MAC
address the ACL should ignore.

awplus(config)# access-list 4000 deny any
00:ao:d2:01:02:04 00:00:00:00:00:00 any vlan 20