Default Setting

None

Command Mode

Mac Access-list Config

5.13.2.4mac access-group in

This command attaches a specific MAC Access Control List (ACL) identified by <name> to an

interface in a given direction. The <name> parameter must be the name of an exsiting MAC ACL. An optional sequence number may be specified to indicate the order of this access list relative to other access lists already assigned to this interface and direction. A lower number indicates higher precedence order. If a sequence number is already in use for this interface and direction, the specified access list replaces the currently attached access list using that sequence number. If the sequence number is not specified for this command, a sequence number that is one greater than the highest sequence number currently in use for this interface and direction will be used. This command specified in 'Interface Config' mode only affects a single interface, whereas the 'Global Config' mode setting is applied to all interfaces. The 'Interface Config' mode command is only available on platforms that support independent per-port class of service queue configuration.

Syntax

mac access-group <name> in [<1-4294967295>] no mac access-group <name> in

<no> - This command removes a MAC ACL identified by <name> from the interface in a given direction.

Default Setting

None

Command Mode

Global Config, Interface Config

286

Page 285 Page 287
Page 286
Image 286
Fortinet MR1 manual Mac access-group
Page 285 Page 287
Top Page Image Contents