69
Cisco Nexus 5500 Series NX-OS Security Command Reference
OL-27883-02
Chapter D Commands
deny icmp (IPv6)
• hop-limit—Hop limit exceeded in transit
• mld-query—Multicast Listener Discovery Query
• mld-reduction—Multicast Listener Discovery Reduction
• mld-report—Multicast Listener Discovery Report
• nd-na—Neighbor discovery neighbor advertisements
• nd-ns—Neighbor discovery neighbor solicitations
• next-header—Parameter next header problems
• no-admin—Administration prohibited destination
• no-route—No route to destination
• packet-too-big—Packet too big
• parameter-option—Parameter option problems
• parameter-problem—All parameter problems
• port-unreachable—Port unreachable
• reassembly-timeout—Reassembly timeout
• redirect—Neighbor redirect
• renum-command—Router renumbering command
• renum-result—Router renumbering result
• renum-seq-number—Router renumbering sequence number reset
• router-advertisement—Neighbor discovery router advertisements
• router-renumbering—All router renumbering
• router-solicitation—Neighbor discovery router solicitations
• time-exceeded—All time exceeded messages
• unreachable—All unreachable
Examples This example shows how to configure an IPv6 ACL named acl-lab13-ipv6 with rules denying all ICMP
traffic from the 2001:0db8:85a3:: and 2001:0db8:69f2:: networks to the 2001:0db8:be03:2112::
network:
switch# configure terminal
switch(config)# ipv6 access-list acl-lab13-ipv6
switch(config-ipv6-acl)# deny icmp 2001:0db8:85a3::/48 2001:0db8:be03:2112::/64
switch(config-ipv6-acl)# deny icmp2001:0db8:69f2::/48 2001:0db8:be03:2112::/64
Related Commands Command Description
ipv6 access-list Configures an IPv6 ACL.
permit (IPv6) Configures a permit rule in an IPv6 ACL.
remark Configures a remark in an ACL.
time-range Configures a time range.
To Next Page
Loading...
