Chapter 9
| Access Control Lists
IPv6 ACLs
– 332 –
Example
This example accepts any incoming packets if the destination address is
2009:DB9:2229::79/8.
Console(config-ext-ipv6-acl)#permit 2009:DB9:2229::79/8
Console(config-ext-ipv6-acl)#
This allows packets to any destination address when the DSCP value is 5.
Console(config-ext-ipv6-acl)#permit any dscp 5
Console(config-ext-ipv6-acl)#
This allows any packets sent to the destination 2009:DB9:2229::79/48 when the
next header is 43.”
Console(config-ext-ipv6-acl)#permit 2009:DB9:2229::79/48 next-header 43
Console(config-ext-ipv6-acl)#
Related Commands
access-list ipv6 (328)
Time Range (141)
ipv6 access-group This command binds a port to an IPv6 ACL. Use the no form to remove the port.
Syntax
ipv6 access-group acl-name {in |
out}
[time-range time-range-name] [counter]
no ipv6 access-group acl-name {in |
out}
acl-name – Name of the ACL. (Maximum length: 16 characters)
in – Indicates that this list applies to ingress packets.
out – Indicates that this list applies to egress packets.
time-range-name - Name of the time range. (Range: 1-16 characters)
counter – Enables counter for ACL statistics.
Default Setting
None
Command Mode
Interface Configuration (Ethernet)
To Next Page
Loading...
Need help?
General
