EasyManuals Logo

Ruijie RG-WLAN Series User Manual

Ruijie RG-WLAN Series
1243 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #935 background imageLoading...
Page #935 background image
Configuration Guide Configuring ACL
You can apply an IPv6 ACL on a specified interface of an access, an aggregate, or a core device based on the
distribution of users.
Verification
Use the following methods to verify the configuration effects of the IPv6 ACL:
Run the ping command to verify that the IPv6 ACL takes effect on the specified interface. For example, if an IPv6 ACL
is configured to prohibit a host with a specified IP address or hosts in a specified IPv6 address range from accessing the
network, run the ping command to verify that the host(s) cannot be successfully pinged.
Access network resources, for example, visit an IPv6 website, to check whether the IPv6 ACL takes effect on the
specified interface.
Related Commands
Configuring an IPv6 ACL
Command
ipv6 access-list acl-name
Parameter
Description
acl-name: Indicates the name of a standard or an extended IP ACL. The name is a string of 1 to 99
characters. The ACL name cannot start with numbers (09), "in", or "out".
Command
Mode
Global configuration mode
Usage Guide
Run this command to configure an IPv6 ACL and enter IPv6 configuration mode.
Adding ACEs to an IPv6 ACL
To filter TCP or UDP packets, add ACEs to an IPv6 ACL as follows:
Command
[sn] {permit | deny } protocol {src-ipv6-prefix/prefix-len | host src-ipv6-addr | any} {dst-ipv6-pfix/pfix-len |
host dst-ipv6-addr | any} [op dstport | range lower upper ] [dscp dscp] [flow-label flow-label] [fragment]
[time-rangetm-rng-name]
Parameter
Description
sn: Indicates the sequence number of an ACE. The value ranges from 1 to 2,147,483,647. This sequence
number determines the priority of this ACE in the ACL. A smaller sequence number indicates a higher
priority. An ACE with a higher priority will be preferentially used to match packets. If you do not specify the
sequence number when adding an ACE, the system automatically allocates a sequence number, which is
equal to an increment (10 by default) plus the sequence number of the last ACE in the current ACL. For
example, if the sequence number of the last ACE is 100, the sequence number of a newly-added ACE will
be 110 by default. You can adjust the increment using a command.
permit: Indicates that the ACE is a permit ACE.
deny: Indicates that the ACE is a deny ACE.
protocol: Indicates the IPv6 protocol number. The value ranges from 0 to 255. To facilitate the use, the
system provides frequently-used abbreviations of IPv6 protocol numbers to replace the specific IP protocol

Table of Contents

Other manuals for Ruijie RG-WLAN Series

Preview: Rgos Command Reference
Rgos Command Reference657 pages
Preview: Configuration Guide
Configuration Guide712 pages
Preview: Web-Based Configuration Guide
Web-Based Configuration Guide71 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Ruijie RG-WLAN Series and is the answer not in the manual?

Ruijie RG-WLAN Series Specifications

General IconGeneral
BrandRuijie
ModelRG-WLAN Series
CategoryWireless Access Point
LanguageEnglish

Related product manuals