PRIMERGY 10GbE Connection Blade 18/8 User Guide
28 / 95
<Filtering design policy>
There are two way for filtering design.
A. Pass the specified packets and reject the others.
B. Reject the specified packets and pass the others.
This chapter explains the following examples for A.
-Pass only packets of the specified source MAC address.
-Pass only packets of the specified destination MAC address.
And explains the following example for B.
-Reject only packets of the specified packet format.
3.4.1
Configuring MAC filter 1
This section describes how to configure MAC filter which passes only packets of the specified
source MAC address and rejects the other packets.
<Filtering Design>
VLAN 10 consists of interface0/1-0/8 and they are untag VLAN.
VLAN 20 consists of interface0/1-0/4 and interface0/9-0/12.Interface0/1-0/4 is tag VLAN and
Interface0/9-0/12 is untag VLAN.
Interface0/4-0/8 in VLAN 10 pass packets of the only source MAC address00:0b:01:02:03:04
and rejects the other packets.
<Commands>
Configure ACL which specifies source MAC address 00:0b:01:02:03:04 and VLAN 10.---(1)
(config)#acl 100 mac 00:0b:01:02:03:04 any any
(config)#acl 100 vlan 10 any
Configure ACL which specifies all packet format of VLAN10. ---
(
2
)
(config)#acl 110 vlan 10 any
Configure mac filter which pass packets specified by (1) in interface0/2.
(config)#interface 0/2
(config-if)#macfilter 0 pass 100
Configure mac filter which rejects packets specified by (2) in interface0/2.
(config)#interface 0/2
(config-if)#macfilter 1 reject 110