Filter
Top Products
6.4.2 Create a MAC Access List
The IntraCore IC36240 has a 16K Mac address. The parameters for a MAC access list are described below:
• MAC access-list standard (700-799): Identifies the access list to which an entry belongs. There is no limit to how
many entries make up a MAC access list, other than available memory.
• MAC access list extended (1100–1199): Identifies the access list to which an entry belongs.
The following is sample output from the mac access-list command.
Switch(config)# mac access-list standard 700
Switch(config)# permit
6.4.3 Create an Expanded Access List
Extended access lists filter at Layer 4, and can check source and destination addresses as well as filter transport
layer information, such as TCP and UDP protocols. In addition to the standard access list parameters listed above, an
extended access list also uses the following information:
• Access list number (1300–1999): Identifies the access list to which an entry belongs
• IP/ICMP/TCP/UDP: Specifies protocol connection
• Destination address: Specifies the destination address to match
• Operator operand: Select eq (equal to), gt (greater than), lt (less than), or neq (not equal to) to specify how to
match the protocol port number
• 0-65535: Specifies the protocol port number. Well-known ports are listed below:
20 File Transfer Protocol (FTP) data
21 FTP Program
23 Telnet
25 Simple Mail Transfer Protocol (SMTP)
69 Trivial File Transfer Protocol (TFTP)
53 Domain Name System (DNS)
80 Hypertext Transport Protocol (HTTP)
110 Post Office Protocol (POP3)
119 Network News Transport Protocol (NNTP)
61 Asante IntraCore IC36240 User’s Manual