EasyManuals Logo

Allied Telesis AlliedWare Plus User Manual

Allied Telesis AlliedWare Plus
3082 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #1959 background imageLoading...
Page #1959 background image
C613-50100-01 REV C Command Reference for x930 Series 1959
AlliedWare Plus™ Operating System - Version 5.4.6-1.x
IPV6 HARDWARE ACCESS CONTROL LIST (ACL) COMMANDS
(IPV6 ACCESS-LIST NAMED TCP UDP FILTER)
Mode IPv6 Hardware ACL Configuration
Default Any traffic on an interface controlled by a hardware ACL that does not explicitly
match a filter is permitted.
Usage The filter entry will match on any TCP or UDP packet that has the specified source
and destination IPv6 addresses and TCP or UDP type. The parameter any may be
specified if an address does not matter.
NOTE: Hardware ACLs will permit access unless explicitly denied by an ACL action.
Examples To add an ACL filter entry that blocks all SSH traffic from network 2001:0db8::0/64
to the hardware IPv6 access-list named my-acl, use the commands:
awplus# configure terminal
awplus(config)# ipv6 access-list my-acl
awplus(config-ipv6-hw-acl)# deny tcp 2001:0db8::0/64 any eq 22
To add an ACL filter entry that blocks all SSH traffic from network 2001:0db8::0/64
on the default VLAN (vlan1) to the hardware IPv6 access-list named my-acl, use
the commands:
awplus# configure terminal
awplus(config)# ipv6 access-list my-acl
awplus(config-ipv6-hw-acl)# deny tcp 2001:0db8::0/64 any eq 22
vlan 1
To remove an ACL filter entry that blocks all SSH traffic from network 2001:0db8::0/
64 from the hardware IPv6 access-list named my-acl, use the commands:
awplus# configure terminal
awplus(config)# ipv6 access-list my-acl
awplus(config-ipv6-hw-acl)# no deny tcp 2001:0db8::0/64 any eq
22
Related
Commands
ipv6 access-list (named)
(ipv6 access-list named ICMP filter)
<ipv6-destination-
wildcard>
Specify destination wildcard bits in IPv6 format
X:X::X:X.
host
<ipv6-destination-host>
Specify a single destination host address.
The IPv6 address uses the format X:X::X:X.
any Specifies any destination host. An abbreviation
for the IPv6 prefix ::/0.
vlan Specifies that the ACL will match on the ID in the
packet's VLAN tag. This parameter can be used in
either single or double-tagged VLAN networks. It
is the conventional VLAN tag (VID).
<1-4094> The VLAN VID.
Parameter Description

Table of Contents

Other manuals for Allied Telesis AlliedWare Plus

Preview: Installation Guide
Installation Guide214 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Allied Telesis AlliedWare Plus and is the answer not in the manual?

Allied Telesis AlliedWare Plus Specifications

General IconGeneral
BrandAllied Telesis
ModelAlliedWare Plus
CategorySwitch
LanguageEnglish

Related product manuals