Configures a MAC ACL. Access lists define access permissions to the network using a set of rules. Each rule specifies an action taken when a packet matches the rule. If the action is deny, the packet is dropped. If the action is permit, the packet is allowed.

Supported in the following platforms:

  • Access Points — AP505i, AP510i/e, AP560i/h
  • Service Platforms — NX5500, NX7500, NX9500, NX9600, VX9000


mac access-list <MAC-ACL-NAME>


mac access-list <MAC-ACL-NAME>
access-list <MAC-ACL-NAME> Configures a MAC access control list
  • <MAC-ACL-NAME> – Specify the ACL name. If a MAC ACL with the specified name does not exist, it is created.


nx9500-6C8809(config)#mac access-list test
MAC Extended ACL Configuration commands:
  deny     Specify packets to reject
  disable  Disable rule if not needed
  ex3500   Ex3500 device
  insert   Insert this rule (instead of overwriting a existing rule)
  no       Negate a command or set its defaults
  permit   Specify packets to forward

  clrscr   Clears the display screen
  commit   Commit all changes made in this session
  do       Run commands from Exec mode
  end      End current mode and change to EXEC mode
  exit     End current mode and down to previous mode
  help     Description of the interactive help system
  revert   Revert changes
  service  Service Commands
  show     Show running system information
  write    Write running configuration to memory or terminal


Related Commands

no Removes an existing MAC access control list


For more information on Access Control Lists, seeAccess-List Policy .