Name: Cisco MDS 9000 Series
Brand: Cisco
Rating: 5 (1 reviews)

To Next Page

To Previous Page

Send documentation comments to mdsfeedback-doc@cisco.com

18-7

Cisco MDS 9000 Family Command Reference

OL-8413-07, Cisco MDS SAN-OS Release 3.x

Chapter 18 P Commands

permit (IPv6-ACL configuration)

Defaults None.

Command Modes IPv6-ACL configuration submode.

Command History

Usage Guidelines The following guidelines can assist you in configuring an IPv6-ACL. For complete information, refer to

the Cisco MDS 9000 Family CLI Configuration Guide.

• You can apply IPv6-ACLs to VSAN interfaces, the management interface, Gigabit Ethernet

interfaces on IPS modules and MPS-14/2 modules, and Ethernet PortChannel interfaces. However,

if IPv6-ACLs are already configured in a Gigabit Ethernet interface, you cannot add this interface

to a Ethernet PortChannel group.

Caution Do not apply IPv6-ACLs to just one member of a PortChannel group. Apply IPv6-ACLs to the entire

channel group.

• Use only the TCP or ICMP options when configuring IPv6-ACLs on Gigabit Ethernet interfaces.

• Configure the order of conditions accurately. Because the IPv6-ACL filters are applied sequentially

to the IP flows, the first match determines the action taken. Subsequent matches are not considered.

Be sure to configure the most important condition first. If no conditions match, the software drops

the packet.

icmp Applies the ACL to any Internet Control Message Protocol (ICMP) packet.

icmp-type Specifies an ICMP message type. The range is 0 to 255.

icmp-code Specifies an ICMP message code. The range is 0 255.

tcp Applies the ACL to any TCP packet.

source-port-operator Specifies an operand that compares the source ports of the specified protocol.

The operands are lt (less than), gt (greater than), and eq (equals).

source-port-number Specifies the port number of a TCP or UDP port. The number can be from 0

to 65535. A range requires two port numbers.

udp Applies the ACL to any UDP packet.

dest-port-operator Specifies an operand that compares the destination ports of the specified

protocol. The operands are lt (less than), gt (greater than), and eq (equals).

dest-port-operator Specifies the port number of a TCP or UDP port. The number can be from 0

to 65535. A range requires two port numbers.

range Specifies a range of ports to compare for the specified protocol.

established Indicates an established connection, which is defined as a packet whole SYN

flag is not set.

Release Modification

3.0(1) This command was introduced.

Other manuals for Cisco MDS 9000 Series

Manual16 pages

Configuration Guide344 pages

Troubleshooting Guide161 pages

Rack Installation8 pages

Installing22 pages

Hardware Installation Guide62 pages

Installation Guide20 pages

Questions and Answers:

Need help?

Do you have a question about the Cisco MDS 9000 Series and is the answer not in the manual?

Cisco MDS 9000 Series Specifications

General

Category	Switch
Operating System	Cisco NX-OS
Ports	Varies by model
Protocols	Fibre Channel (FC), Fibre Channel over IP (FCIP), iSCSI
Redundancy	Redundant supervisors, power supplies, and fans
Management	Cisco Data Center Network Manager (DCNM), CLI, SNMP
Virtualization Support	VSANs (Virtual SANs)
Security Features	Fibre Channel Security Protocol (FC-SP)
Hot Swappable Components	power supplies, fans
Power Supply Options	AC and DC options available