Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1008
Views
0
Helpful
1
Replies

mac access-list in 6509

christmas25
Level 1
Level 1

‎12-10-2007 07:17 PM - edited ‎03-05-2019 07:55 PM

Does anyone know what is the maximum number of mac address supported with mac access-list extended MAC_Control command in 6509?

Labels:
0 Helpful
1 Reply 1

umedryk
Level 5
Level 5

‎12-17-2007 02:47 PM

The Catalyst 4500 Series implements counters per MAC Access Control Entry (ACE). Please note that the configuration required to mitigate the Cisco Catalyst 6000 and 6500 series and Cisco 7600 Series MPLS packet vulnerability would block loopback frames (EtherType 0x9000). There is no operational impact for the Catalyst 4500 Series to drop loopback frames of external stations. Due to the dropping of loopback frames, the show access-lists privileged EXEC mode command will constantly increment the number of matched frames. The default in Cisco IOS devices is to send a loopback frame every 10 seconds (keepalive interface configuration command).

Cat4500#show access-lists

Extended MAC access list ACL-Deny-Non-IP

deny any any (1151 matches)

Extended MAC access list ACL-Match-Non-IP

permit any any (820 matches)In the example output, 1151 frames were dropped by the MAC ACL used by the example PACL and 820 frames were dropped by the sample VLAN map configuration

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card