arp access-list filter

OcNOS-RON : System Management Guide : System Management Command Reference : Access Control List Commands (XGS) : arp access-list filter

Use this command to configure access control entry in ARP access control list (ACL).

This determines whether to accept or drop an ARP packet based on the configured match criteria. Use the no form of this command to remove an ACL specification.

Note: Configuring the same filter again with a change of sequence number or change of action results in an update of sequence number or filter action.

Command Syntax

Parameters

deny

Drop the packet.

permit

Accept the packet.

<1-268435453>

ARP ACL sequence number.

request

RP request type

A.B.C.D/M

Source IP prefix and length.

A.B.C.D A.B.C.D

Source IP address and mask.

host A.B.C.D

Single source host IP address.

any

Match any source IP address.

any

Any source/destination.

XX-XX-XX-XX-XX-XX

Source MAC address (Option 1).

XX:XX:XX:XX:XX:XX

Source MAC address (Option 2).

XXXX.XXXX.XXXX

Source MAC address (Option 3).

XX-XX-XX-XX-XX-XX

Source wildcard (Option 1).

XX:XX:XX:XX:XX:XX

Source wildcard (Option 2).

XXXX.XXXX.XXXX

Source wildcard (Option 3).

vlan <1-4094>

VLAN identifier.

inner-vlan<1-4094>

Inner VLAN identifier.

log

Log the packets matching the filter (in-direction only).

sample

Sample the packets matching the filter (in-direction only).

Command Mode

ARP access-list mode

Applicability

This command was introduced in OcNOS version 1.3.6.

Example

#configure terminal

(config)#arp access-list ARP_ACL1

(config-arp-acl)#15 permit ip host 2.2.2.1 mac any inner-vlan 3

(config-arp-acl)#no 15

Last modified date: 08/28/2023