Comware Based
cancel
Showing results for 
Search instead for 
Did you mean: 

MAC filtering using an ACL on E5500

Brig
Occasional Contributor

MAC filtering using an ACL on E5500

Hi all,

 

as the subjest says I'm trying to set up MAC filtering.

What I want to do is block all mac addresses from accessing a port yet permitting some.

 

I have tried

 

acl number 4000

 rule 0 deny source 0000-0000-0000 ffff-ffff-ffff (and ffff-ffff-ffff ffff-ffff-ffff)

 rule 5 permit source 6431-5013-e9c7 ffff-ffff-ffff

 rule 10 permit source 0008-74a2-c65d ffff-ffff-ffff

 

etc...to no avail. And have read the ACL section of the config manual and can't find anything of help.

 

can anyone help shed any light?

 

many thanks

 

Brig

2 REPLIES
Richard Brodie_1
Honored Contributor

Re: MAC filtering using an ACL on E5500

Only that if you are specifiying a mask with all f's, that's an exact match. So you need a better 'deny all' rule.

Brig
Occasional Contributor

Re: MAC filtering using an ACL on E5500

Thanks,

 

simply putting "rule 0 deny" works!