Management access list names can consist of any printable character,
including blanks. Enclose the name in quotes to embed blanks in the name.
Examples
The following example shows how to configure two management interfaces,
gigabit Ethernet 1/0/1 and gigabit Ethernet 2/0/9.
console(config)#management access-list mlist
console(config-macal)# permit gigabitethernet 1/0/1 priority 1
console(config-macal)# permit gigabitethernet 2/0/9 priority 1
console(config-macal)# exit
console(config)#management access-class mlist
The following example shows how to configure all the interfaces to be
management interfaces except for two interfaces, gigabit Ethernet 1/0/1 and
gigabit Ethernet 2/0/9.
console(config)# management access-list mlist
console(config-macal)# deny gigabitethernet 1/0/1 priority 1
console(config-macal)# deny gigabitethernet 2/0/9 priority 2
console(config-macal)# permit priority 2
console(config-macal)# exit
console(config) # management access-class mlist
permit (management)
Use the permit command in Management Access-List configuration mode to
set conditions for the management access list.
Syntax
ip-address
mask
prefix-length
permit ip-source
[mask
|
] [gigabitethernet
vlan-id
port-channel-number |
unit/slot/port | vlan
| port-channel
service
priority-value
tengigabitethernet unit/slot/port][ service
] [ priority
]
vlan-id
port-
permit {gigabitethernet unit/slot/port | vlan
| port-channel
channel-number | tengigabitethernet unit/slot/port} [service service ]
priority-value
[priority
]
service
priority-value
permit service
[priority
]
priority-value
permit priority
1475
Management ACL Commands