IPv6 Configuration Guide K/KA/KB.15.15
Assigns an ACL as a VACL to a VLAN to filter switched or routed IPv6 traffic entering
the switch on that VLAN. You can use either the global configuration level or the
VLAN context level to assign or remove a VACL.
vid
VLAN identification number.
identifier
The alphanumeric name by which the ACL can be accessed. An identifier can
have up to 64 characters.
The no form of the command removes the ACL assignment from the interface.
NOTE: The switch allows you to assign an "empty" ACL identifier to a VLAN. In
this case, if you later populate the ACL with ACEs, the new ACEs automatically
become active on the assigned VLAN as they are created. Also, if you delete an
assigned ACL from the switch without also using the no form of this command to
remove the assignment to a VLAN, the ACL assignment remains as an "empty"
ACL.
Example 69 Methods for enabling and disabling VACLs
HP Switch(config)# vlan 20 ipv6 access-group List-010 vlan
1
HP Switch(config)# vlan 20
HP Switch(vlan-20)# ipv6 access-group List-015 vlan
2
HP Switch(vlan-20)# exit
HP Switch(config)# no vlan 20 ipv6 access-group List-010 vlan
3
HP Switch(config)# vlan 20
HP Switch(vlan-20)# no ipv6 access-group 015 vlan
4
HP Switch(vlan-20)# exit
1
Enables a VACL from the Global Configuration Level
2
Enables a VACL from a VLAN Context
3
Disables a VACL from the Global Configuration Level
4
Disables a VACL from a VLAN Context
Filtering inbound IPv6 traffic per port and trunk
You can use the same ACL for assignment to multiple interfaces. For limits and operating rules, see
“ACL configuration and operating rules” (page 106).
Syntax:
[no] interface [ port-list | trkx ] ipv6 access-group identifier in
Assigns an ACL as a static port ACL to a port, port list, or static trunk to filter switched
or routed IPv6 traffic entering the switch on that interface. You can use either the
global configuration level or the interface context level to assign or remove a static
port ACL.
identifier
The alphanumeric name by which the ACL can be accessed. An identifier can
have up to 64 characters.
[ port-list | trkx ]
The port, trunk, or list of ports and/or trunks on which to assign or remove the
specified ACL.
124 IPv6 Access Control Lists (ACLs)