Version
8.1.1.0
7.8.1.0
7.6.1.0
7.5.1.0
6.1.1.0
Usage Information You can assign one ACL (standard or extended) to an interface.
If you apply a MAC ACL on a VLAN:
If you apply a MAC ACL on a physical or port-channel interface, a VLAN to which the
port is associated cannot have another ACL applied.
If you apply a MAC ACL on an ACL VLAN group, none of the VLANs in the group can
have another ACL applied.
Related
mac access-list standard
Commands
mac access-list extended
show mac access-lists
Display all of the Layer 2 ACLs configured in the system, whether or not they are applied to an interface, and
the count of matches/mismatches against each ACL entry displayed.
C9000 Series
Syntax
show mac access-lists [acl_name word | interface } {in | out |
interface}
Parameters
access-list
acl_name word
interface interface
Description
Introduced on the E-Series ExaScale.
Increased the name string to accept up to 140 characters. Prior
to 7.8.1.0, names are up to 16 characters long.
Introduced on the S-Series.
Introduced on the C-Series.
Introduced on the E-Series.
•
None of the VLAN members can have another ACL applied which has an entry for
the VLAN.
•
The VLAN cannot belong to an ACL VLAN group.
Displays information on all L2 access-lists configured.
Enter the acl_name word , up to 140 characters, for specified
access-list.
Enter the keyword interface then the one of the following
keywords and slot/port or number information:
— configures a standard MAC ACL.
— configures an extended MAC ACL.
Access Control Lists (ACL)
331