PRIMERGY 10GbE Connection Blade 18/8 User Guide
30 / 95
3.4.4
Configuring MAC filter 4
This section describes how to configure MAC filter which rejects only the traffic between the specified
MAC addresses.
<Filtering Design>
VLAN 10 consists of interface0/1-0/4 with untag and 0/5-0/8 with tag.
VLAN 20 consists of interface0/1-0/4 with tag and interface0/5-0/8 with tag.
In VLAN10, Only TCP Traffic is rejected between MAC address
00:0b:01:02:03:04 and
00:0b:11:12:13:14
In VLAN20, Only UDP traffic is rejected between MAC address
00:0b:21:22:23:24 and
00:0b:31:32:33:34.
<Commands>
Configure ACL which specifies TCP packets of source MAC address 00:0b:01:02:03:04 and destination
MAC address 00:0b:11:12:13:14. --- (1)
(config)#acl 0 00:0b:01:02:03:04 00:0b:11:12:13:14 any
(config)#acl 0 ip any any 6 any
Configure ACL which specifies TCP packets of source MAC address 00:0b:11:12:13:14 and destination
MAC address 00:0b:01:02:03:04. --- (2)
(config)#acl 1 00:0b:11:12:13:14 00:0b:01:02:03:04 any
(config)#acl 1 ip any any 6 any
Configure ACL which specifies UDP packets of source MAC address 00:0b:21:22:23:24 and destination
MAC address 00:0b:31:32:33:34. --- (3)
(config)#acl 2 00:0b:21:22:23:24 00:0b:31:32:33:04 any
(config)#acl 2 ip any any 17 any
Configure ACL which specifies UDP packets of source MAC address 00:0b:31:32:33:34 and destination
MAC address 00:0b:21:22:23:24. --- (4)
(config)#acl 3 00:0b:21:22:23:24 00:0b:31:32:33:04 any
(config)#acl 3 ip any any 17 any
Configure mac filter which rejects packets specified by (1) and (2) in VLAN10.
(config)#vlan 10 macfilter 0 reject 0
(config)#vlan 10 macfilter 1 reject 1
Configure mac filter which rejects packets specified by (3) and (4) in VLAN20.
(config)#vlan 20 macfilter 0 reject 2
(config)#vlan 20 macfilter 1 reject 3
