3Com Switch 8800 Advanced Software V5 Configuration Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve 9400sl 4-Port 10-GbE Module

811

812

813

814

815

816

817

818

819

820

IPV6 ACL CONFIGURATION

When configuring IPv6 ACLs, go to these sections for information you are

interested in:

■ “Creating a Time Range” on page 815

■ “Configuring a Basic IPv6 ACL” on page 815

■ “Configuring an Advanced IPv6 ACL” on page 816

■ “Displaying and Maintaining IPv6 ACLs” on page 818

■ “IPv6 ACL Configuration Examples” on page 818

Creating a Time Range Refer to section “Creating a Time Range” on page 805

Configuring a Basic

IPv6 ACL

Basic IPv6 ACLs filter packets based on source IPv6 address. They are numbered in

the range 2000 to 2999.

Configuration

Prerequisites

If you want to reference a time range to a rule, define it with the time-range

command first.

Configuration Procedure Follow these steps to configure an IPv6 ACL:

Tab le 33 Network diagram for ACL configuration

To do... Use the command... Remarks

Enter system view system-view --

Create and enter basic IPv6

ACL view

acl ipv6 number acl6-number

[ match-order { auto | config

} ]

Required

The default match order is

config.

Create or modify a rule rule [ rule-id ] { deny | permit

} [ fragment | logging |

source { ipv6-address

prefix-length |

ipv6-address/prefix-length |

any } | time-range time-name

] *

Required

To create multiple rules,

repeat this step.

Set a rule numbering step step step-value Optional

The default step is 5.

Create an IPv6 ACL

description

description text Optional

Create a rule description rule rule-id comment text Optional