Chapter 10
| Access Control Lists
IPv6 ACLs
– 371 –
Command Mode
Extended IPv6 ACL
Command Usage
All new rules are appended to the end of the list.
Example
This example accepts any incoming packets if the destination address is
2009:DB9:2229::79.
Console(config-ext-ipv6-acl)#permit 2009:DB9:2229::79
Console(config-ext-ipv6-acl)#
Related Commands
access-list ipv6 (368)
Time Range (168)
ipv6 access-group This command binds an IPv6 ACL to a port. Use the no form to remove the port.
Syntax
ipv6 access-group acl-name {in | out} [time-range time-range-name]
[counter]
no ipv6 access-group acl-name {in | out}
acl-name – Name of the ACL. (Maximum length: 32 characters)
in – Indicates that this list applies to ingress packets.
out – Indicates that this list applies to egress packets.
time-range-name - Name of the time range. (Range: 1-32 characters)
counter – Enables counter for ACL statistics.
Default Setting
None
Command Mode
Interface Configuration (Ethernet)
If a port is already bound to an ACL and you bind it to a different ACL, the switch
will replace the old binding with the new one.
Example
Console(config)#interface ethernet 1/2
Console(config-if)#ipv6 access-group standard david in
Console(config-if)#
To Next Page
Loading...
Need help?
General