CLI (Command Line Interface)

MAC ACL Commands (Cont.)

Command

Function

 

 

mask

Syntax:

(MAC ACL)

[no] mask [pktformat]

This command defines a mask for

{any host source-bitmask} {any host destination-

bitmask}

MAC ACLs. This mask defines

[vid [vid-bitmask]] [ethertype [ethertype-bitmask]]

the fields to check in the packet

• pktformat – Check the packet format field. (If this keyword must be used

header.

in the mask, the packet format must be specified in ACL rule to match.)

Use the no form to remove a

• any – Any address will be matched.

mask.

• host – The address must be for a single node.

 

 

source-bitmask – Source address of rule must match this bitmask.

 

destination-bitmask – Destination address of rule must match this

 

bitmask.

 

• vid – Check the VLAN ID field.

 

vid-bitmask – VLAN ID of rule must match this bitmask.

 

• ethertype – Check the Ethernet type field.

 

ethertype-bitmask – Ethernet type of rule must match this bitmask.

 

Default Setting: None

 

Command Mode: MAC Mask

 

Command Usage: Up to seven masks can be assigned to an ingress or

 

egress ACL.

 

Packets crossing a port are checked against all the rules in the ACL until a

 

match is found. The order in which these packets are checked is deter-

 

mined by the mask, and not the order in which the ACL rules were entered.

 

First create the required ACLs and inbound or outbound masks before

 

mapping an ACL to an interface.

 

Example:

 

This example shows how to create an Ingress MAC ACL and bind it to a

 

port. You can then see that the order of the rules have been changed by

 

the mask.

 

Console(config)#access-list mac M4

 

Console(config-mac-acl)#permit any any

 

Console(config-mac-acl)#deny tagged-eth2 00-11-11-11-11-11

 

ff-ff-ff-ff-ff-ff any vid 3

 

Console(config-mac-acl)#end

 

Console#show access-list

 

MAC access-list M4:

 

permit any any

 

deny tagged-eth2 host 00-11-11-11-11-11 any vid 3

 

Console(config)#access-list mac mask-precedence in

 

Console(config-mac-mask-acl)#mask pktformat ff-ff-ff-ff-ff-ff

 

any vid

 

Console(config-mac-mask-acl)#exit

 

Console(config)#interface ethernet 1/12

 

Console(config-if)#mac access-group M4 in

 

Console(config-if)#end

 

Console#show access-list

 

MAC access-list M4:

 

deny tagged-eth2 host 00-11-11-11-11-11 any vid 3

 

permit any any

 

MAC ingress mask ACL:

 

mask pktformat host any vid

 

Console#

 

 

220

NXA-ENET24 - Software Management Guide

Page 240
Image 240
AMX NXA-ENET24 manual Command Function Mask Syntax, MAC ACLs. This mask defines, Command Mode MAC Mask, Egress ACL

NXA-ENET24 specifications

The AMX NXA-ENET24 is a versatile and powerful networked control interface designed to meet the growing demands of modern AV systems. This network switch offers an exceptional combination of reliability, performance, and scalability, making it an ideal choice for professional environments such as conference rooms, educational facilities, and control rooms.

One of the key features of the NXA-ENET24 is its 24-port configuration, allowing for extensive connectivity options. Each port supports 10/100/1000 Mbps speeds, ensuring that high bandwidth applications are handled with ease. Additionally, the switch incorporates advanced auto-negotiation technology, which automatically configures the optimal speed and duplex mode for connected devices. This ensures seamless connectivity and minimizes the risk of network disruptions.

The NXA-ENET24 is designed with advanced management capabilities, including support for VLANs, which helps to segment network traffic for enhanced security and performance. Network administrators can easily create virtual local area networks to optimize traffic flow and reduce congestion. This feature is particularly beneficial in environments where multiple AV systems operate concurrently.

Another significant characteristic of the NXA-ENET24 is its support for Power over Ethernet, or PoE. This feature enables the switch to deliver electrical power alongside data through the network cables. As a result, devices such as IP cameras, VoIP phones, and wireless access points can be powered directly from the switch, simplifying deployment and reducing the need for additional power sources.

Monitoring and management of the switch are made easier through a user-friendly interface. The NXA-ENET24 supports SNMP for network management, allowing users to monitor performance metrics, configure settings, and receive alerts in case of issues. This level of oversight is crucial for maintaining the stability of AV systems in mission-critical applications.

Durability is another hallmark of the NXA-ENET24 design. The switch features a robust chassis that is engineered to withstand the rigors of professional use. With cooling mechanisms in place and a fanless design, the NXA-ENET24 operates quietly and efficiently, making it suitable for environments where noise is a concern.

In conclusion, the AMX NXA-ENET24 is a powerful, reliable, and feature-rich network switch that effectively supports modern AV applications. With its extensive connectivity options, advanced management capabilities, PoE support, and durable design, it is an excellent choice for integrators and organizations looking to optimize their network infrastructure.