beautypg.com

Allied Telesis AT-FS970M Series User Manual

Page 1580

background image

Chapter 97: ACL Commands

1580

Examples

This example creates a Named IP ACL, called “permitmac,” that permits
packets from source MAC address 12:a3:4b:89:10:98 to any destination
MAC address (00:00:00:00:00:00) on VLAN 15. Then the ACL is assigned
to port 3:

awplus> enable
awplus# configure terminal
awplus(config)# ip access-list permitmac
awplus(config-ip-acl)# permit mac 12:a3:4b:89:10:98
00:00:00:00:00:00
awplus(config-ip-acl)# exit
awplus(config)# interface port1.0.3
awplus(config-if)# access-group permitmac

This example creates an ACL called “denymac” that denies packets
containing destination MAC addresses starting with a4:54:84:12. Then the
ACL is assigned to port 12:

awplus> enable
awplus# configure terminal
awplus(config)# ip access-list denymac
awplus(config-ip-acl)# deny mac any a4:54:86:12:00:00
awplus(config-ip-acl)# exit
awplus(config)# interface port1.0.12
awplus(config-if)# access-group denymac

See also other documents in the category Allied Telesis Computer hardware: