Management ACL Commands 1141
console(config-macal)# permit ethernet 1/g1 priority
<1-64>
console(config-macal)# permit ethernet 2/g9 priority
<1-64>
console(config-macal)# exit
console(config)#management access-class mlist
The following example shows how to configure all the interfaces to be
management interfaces except for two interfaces, Ethernet 1/g1 and Ethernet
2/g9.
console(config)# management access-list mlist
console(config-macal)# deny ethernet 1/g1 priority
<1-64>
console(config-macal)# deny ethernet 2/g9 priority
<1-64>
console(config-macal)# permit priority <1-64>
console(config-macal)# exit
console(config) # management access-class mlist
permit (management)
Use the permit command in Management Access-List configuration mode to
set conditions for the management access list.
Syntax
permit ip-source
ip-address
[mask
mask
|
prefix-length
] [ethernet
interface-
number
| vlan
vlan-id
|port-channel
number
] [service
service
] [priority
priority-value
]
permit {ethernet
interface-number
| vlan
vlan-id
| port-channel
number
}
[service
service
] [priority
priority-value
]
permit service
service
[priority
priority-value
]
permit priority
priority-value
•
ethernet
interface-number
— A valid routed port number.