MAC ACL

MAC ACL

MAC ACL, additionally accepted as Ethernet ACL, can clarify non-IP cartage on a VLAN and on a concrete Layer 2 interface by

using MAC addresses in a called MAC continued ACL. The accomplish to configure a MAC ACL are agnate to those of

extended called ACLs. MAC ACL supports alone entering cartage filtering.

To ascertain the MAC Continued ACL, use the mac access-list continued command. Several non-IP protocols are

supported.

After the MAC ACL is created, it can be activated to a Layer 2 interface application the mac access-group [acl-name]

in command to clarify non-IP cartage accustomed on the interface.

Example 4-7 shows how to ascertain and administer a MAC ACL to bead all (non-IP) AppleTalk Address Resolution

Protocol (AARP) packets, acceptance all added types of traffic.

Example 4-7. MAC ACL Configuration Example

Switch(config)# mac access-list continued my-mac-acl

Switch(config-ext-macl)# abjure any any aarp

Switch(config-ext-macl)# admittance any any

Switch(config-ext-macl)# exit

Switch(config)# interface Fastethernet0/10

Switch(config-if)# mac access-group my-mac-acl in

Switch(config-if)# end

Switch#