CLI Reference Guide-R04

ManualsBrandsEdgecore Networks ManualsFixed Broadband AccessENHANCED TEMPERATURE L2+ GIGABIT ETHERNET ACCESS / AGGREGATION SWITCH WITH 4 X 10G UPLINKS

381

382

383

384

385

386

387

388

389

390

Table Of Contents

Chapter 10

| Access Control Lists

IPv6 ACLs

– 390 –

Default Setting

None

Command Mode

Standard IPv6 ACL

Command Usage

New rules are appended to the end of the list.

Example

This example configures one permit rule for the specific address 2009:DB9:2229::79

and another rule for the addresses with the network prefix 2009:DB9:2229:5::/64.

Console(config-std-ipv6-acl)#permit host 2009:DB9:2229::79

Console(config-std-ipv6-acl)#permit 2009:DB9:2229:5::/64

Console(config-std-ipv6-acl)#

Related Commands

access-list ipv6 (388)

Time Range (177)

permit, deny

(Extended IPv6 ACL)

This command adds a rule to an Extended IPv6 ACL. The rule sets a filter condition

for packets with specific destination IP addresses, next header type, or flow label.

Use the no form to remove a rule.

Syntax

{permit | deny} [next-header | tcp | udp]

{any | host source-ipv6-address | source-ipv6-address[/prefix-length]}

{any | destination-ipv6-address[/prefix-length]}

source-port sport [bitmask]] | [destination-port dport [port-bitmask][time-

range time-range-name] | [dscp dscp]]

[time-range time-range-name]

[dscp dscp]

no {permit | deny} [next-header | tcp | udp]

{any | host source-ipv6-address | source-ipv6-address[/prefix-length]}

{any | destination-ipv6-address[/prefix-length]}

source-port sport [bitmask]] | [destination-port dport [port-bitmask][time-

range time-range-name] | [dscp dscp]]

[time-range time-range-name]

[dscp dscp]

next-header - The type of header immediately following the IPv6 header.

(Range: 0-255)

any – Any IP address (an abbreviation for the IPv6 prefix ::/0).

host – Keyword followed by a specific destination IP address.