Adding Rules to a MAC-based ACL
To add rules (ACEs) to an ACL:
- Click Access Control > MAC Based ACE. The MAC Based ACE page opens.
- Select an ACL, and click Go. The ACEs in the ACL are listed.
- Click Add. The Add MAC Based ACE page opens.
- Enter the parameters.
- ACL Name--Displays the name of the ACL to which an ACE is being added.
- Priority--Enter the priority of the ACE. ACEs with higher priority are processed first. One is the highest priority.
- Action--Select the action taken upon a match. The options are:
- Destination MAC Address--Select Any if all destination addresses are acceptable or User defined to enter a destination address or a range of destination addresses.
- Destination MAC Address Value--Enter the MAC address to which the destination MAC address will be matched and its mask (if relevant).
- Destination MAC Wildcard Mask--Enter the mask to define a range of MAC addresses. Note that this mask is different than in other uses, such as subnet mask. Here, setting a bit as 1 indicates don't care and 0 indicates to mask that value.
- Source MAC Address--Select Any if all source address are acceptable or User defined to enter a source address or range of source addresses.
- Source MAC Address Value--Enter the MAC address to which the source MAC address will be matched and its mask (if relevant).
- Source MAC Wildcard Mask--Enter the mask to define a range of MAC addresses.
- VLAN ID--Enter the VLAN ID section of the VLAN tag to match.
- 802.1p--Select Include to use 802.1p.
- 802.1p Value--Enter the 802.1p value to be added to the VPT tag.
- 802.1p Mask--Enter the wildcard mask to be applied to the VPT tag.
- Ethertype--Enter the frame Ethertype to be matched.
- Click Apply. The MAC-based ACE is defined, and the Running Configuration file is updated.