EasyManua.ls Logo

LevelOne GEL-5261 - Page 288

LevelOne GEL-5261
570 pages
Save Page as PDF
Print Icon
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
Chapter 12
|
Security Measures
Access Control Lists
288
Action
An ACL can contain any combination of permit or deny rules.
Source Address Type Specifies the source IP address type. Use “Any” to
include all possible addresses, “Host” to specify a specific host address in the
Address field, or “IPv6-Prefix” to specify a range of addresses. (Options: Any,
Host, IPv6-Prefix; Default: Any)
Destination Address Type Specifies the destination IP address type. Use
“Any” to include all possible addresses, or “IPv6-Prefix” to specify a range of
addresses. (Options: Any, IPv6-Prefix; Default: Any)
Source/Destination IPv6 Address An IPv6 address or network class. The
address must be formatted according to RFC 2373 “IPv6 Addressing
Architecture,” using 8 colon-separated 16-bit hexadecimal values. One double
colon may be used in the address to indicate the appropriate number of zeros
required to fill the undefined fields.
Source
/
Destination Prefix-Length
A decimal value indicating how many
contiguous bits (from the left) of the address comprise the prefix; i.e., the
network portion of the address. (Range: 0-128 bits for the source prefix; 0-8 bits
for the destination prefix)
DSCP DSCP traffic class. (Range: 0-63)
Source Port Protocol
7
source port number. (Range: 0-65535)
Source Port Bit Mask Decimal number representing the port bits to match.
(Range: 0-65535)
Destination Port Protocol
7
destination port number. (Range: 0-65535)
Destination Port Bit Mask Decimal number representing the port bits to
match. (Range: 0-65535)
Next Header Identifies the type of header immediately following the IPv6
header. (Range: 0-255)
Optional internet-layer information is encoded in separate headers that may be
placed between the IPv6 header and the upper-layer header in a packet. There
are a small number of such extension headers, each identified by a distinct Next
Header value. IPv6 supports the values defined for the IPv4 Protocol field in
RFC 1700, and includes these commonly used headers:
0 : Hop-by-Hop Options (RFC 2460)
6 : TCP Upper-layer Header (RFC 1700)
17 : UDP Upper-layer Header (RFC 1700)
43 : Routing (RFC 2460)
44 : Fragment (RFC 2460)
50 : Encapsulating Security Payload (RFC 2406)
51 : Authentication (RFC 2402)
7. Includes TCP, UDP or other protocol types.

Table of Contents

Related product manuals