Chapter 15
Configuring Access Control
Configuring the PBF Before Software Release 8.6(1)
To configure a PBF with a software release before release 8.6(1), follow these steps:
Configure the PBF MAC address for the PFC and enable PBF.
Step 1
Console> (enable) set pbf
PBF committed successfully.
Operation successful.
Console> (enable)
Console> (enable) show pbf
Pbf status
------------
ok
Console> (enable)
Configure one PBF client called CLIENT-TEST.
Step 2
Console> (enable) set pbf client CLIENT-TEST 10.0.0.10 00-00-11-11-22-22 10
Commit operation successful.
Console> (enable)
The PBF client has been created
Console> (enable)
Console> (enable) show pbf client
Name
Map
VLAN
Clients
Adjacency
-------------------------------------------------
.c0000CLIENT-TEST
Console> (enable)
The set pbf client command macro has created the security ACL adjacency for the client, but the macro
command (set pbf client CLIENT-TEST 10.0.0.10 00-00-11-11-22-22 10) that created the security
ACL adjacency does not appear in the following configuration:
Console> (enable) show run
<SNIP>
!
#security ACLs
clear security acl all
#pbf set
set pbf mac 00-0d-65-36-1e-eb
#adj set
set security acl adjacency .c0000CLIENT-TEST 10 00-00-11-11-22-22 10.0.0.10
#
commit security acl all
!
<SNIP>
Console> (enable)
OL-8978-04
Mac address
------------------
00-0d-65-36-1e-eb
: CLIENT-TEST
: No map
: 10
: 1
ip
10.0.0.10
Unrelated configuration information cut out
Unrelated configuration information cut out
Catalyst 6500 Series Switch Software Configuration Guide—Release 8.7
Vlans
------------------
mac
00-00-11-11-22-22
Configuring Policy-Based Forwarding
15-111