C613-50100-01 REV C Command Reference for x930 Series 1949
AlliedWare Plus™ Operating System - Version 5.4.6-1.x
IPV6 HARDWARE ACCESS CONTROL LIST (ACL) COMMANDS
(IPV6 ACCESS-LIST NAMED ICMP FILTER)
Default Any traffic on an interface controlled by a hardware ACL that does not explicitly
match a filter is permitted.
Examples To add a filter entry to the ACL named “my-acl”, to block ICMP packets sent from
network 2001:0db8::0/64 , use the commands:
awplus# configure terminal
awplus(config)# ipv6 access-list my-acl
awplus(config-ipv6-hw-acl)# deny icmp 2001:0db8::0/64 any
To remove a filter entry from the ACL named “my-acl” that blocks all ICMP packets
sent from network 2001:0db8::0/ 64 , use the commands:
awplus# configure terminal
awplus(config)# ipv6 access-list my-acl
awplus(config-ipv6-hw-acl)# no deny icmp 2001:0db8::0/64 any
To specify an ACL named “my-acl1” and add a filter entry that blocks all ICMP6 echo
requests, enter the commands:
awplus# configure terminal
awplus(config)# ipv6 access-list my-acl1
awplus(config-ipv6-hw-acl)# deny icmp any any icmp-type 128
To specify an ACL named “my-acl2” and add a filter entry that blocks all ICMP6 echo
requests on the default VLAN (vlan1), enter the following commands:
awplus# configure terminal
awplus(config)# ipv6 access-list my-acl2
awplus(config-ipv6-hw-acl)# deny icmp any any icmp-type 128
vlan 1
To remove a filter entry that blocks all ICMP6 echo requests from the ACL named
“my-acl1”, enter the following commands:
awplus# configure terminal
awplus(config)# ipv6 access-list my-acl1
awplus(config-ipv6-hw-acl)# no deny icmp any any icmp-type 128
Related
Commands
ipv6 access-list (named)
(ipv6 access-list named IPv6 filter)
(ipv6 access-list named protocol filter)
(ipv6 access-list named TCP UDP filter)
ipv6 traffic-filter
show ipv6 access-list (IPv6 Hardware ACLs)
To Next Page
Loading...
Need help?
General
