196
Cisco Nexus 5500 Series NX-OS Security Command Reference
OL-27883-02
Chapter P Commands
permit sctp (IPv6)
This syntax is equivalent to IPv6-address/128.
This example shows how to specify the source argument with the host keyword and the
2001:0db8:85a3:08d3:1319:8a2e:0370:7344 IPv6 address:
switch(config-acl)# permit sctp host 2001:0db8:85a3:08d3:1319:8a2e:0370:7344 any
• Any address—You can use the any keyword to specify that a source or destination is any IPv6
address. For examples of the use of the any keyword, see the examples in this section. Each example
shows how to specify a source or destination by using the any keyword.
Examples This example shows how to configure an IPv6 ACL named acl-lab13-ipv6 with rules permitting all SCTP
traffic from the 2001:0db8:85a3:: and 2001:0db8:69f2:: networks to the 2001:0db8:be03:2112::
network:
switch# configure terminal
switch(config)# ipv6 access-list acl-lab13-ipv6
switch(config-ipv6-acl)# permit sctp 2001:0db8:85a3::/48 2001:0db8:be03:2112::/64
switch(config-ipv6-acl)# permit sctp 2001:0db8:69f2::/48 2001:0db8:be03:2112::/64
This example shows how to configure an IPv6 ACL named ipv6-eng-to-marketing with a rule that
permits all IPv6 traffic from an IPv6-address object group named eng_ipv6 to an IPv6-address object
group named marketing_group:
switch# configure terminal
switch(config)# ipv6 access-list ipv6-eng-to-marketing
switch(config-ipv6-acl)# permit sctp addrgroup eng_ipv6 addrgroup marketing_group
Related Commands Command Description
deny (IPv6) Configures a deny rule in an IPv6 ACL.
ipv6 access-list Configures an IPv6 ACL.
remark Configures a remark in an ACL.
To Next Page
Loading...
