Ipv6 access-list named tcp udp filter) – Allied Telesis AlliedWare Plus Operating System Version 5.4.4C (x310-26FT,x310-26FP,x310-50FT,x310-50FP) User Manual

Page 946

Advertising
background image

IPv6 Hardware Access Control List (ACL) Commands

Software Reference for x310 Series Switches

36.14

AlliedWare Plus

TM

Operating System - Version 5.4.4C

C613-50046-01 REV A

(ipv6 access-list named TCP UDP filter)

Use this ACL filter to add a filter entry for an IPv6 source and destination address and
prefix, with TCP (Transmission Control Protocol) or UDP (User Datagram Protocol) source
and destination ports specified, to the current named IPv6 access-list. If a sequence
number is specified, the new entry is inserted at the specified location. Otherwise, the
new entry is added at the end of the access-list.

Note that specifying the send-to-cpu parameter could result in EPSR healthcheck
messages and other control packets being dropped.

The no variant of this command removes a filter entry for an IPv6 source and destination
address and prefix, with TCP or UDP source and destination ports specified, from the
current named IPv6 access-list. You can specify the filter entry for removal by entering
either its sequence number, or its filter entry profile.

Syntax

[<sequence-number>]

{deny|permit|send-to-cpu|send-to-mirror|copy-to-cpu|copy-to-

mirror} {tcp|udp} {<ipv6-source-prefix/prefix-length>|

<ipv6-source-address> <ipv6-source-wildcard>|

host <ipv6-source-host>|any}

{eq <sourceport>|lt <sourceport>|gt <sourceport>|ne <sourceport>}|

[range <start-range> <end-range>]

{<ipv6-destination-prefix/prefix-length>|

<ipv6-destination-address> <ipv6-destination-wildcard>|

host <ipv6-destination-host>|any}

{[eq <destport>|lt <destport>|gt <destport>|ne <destport>}

[range <start-range> <end-range>]

no {deny|permit|send-to-cpu|send-to-mirror|copy-to-cpu|copy-to-

mirror} {tcp|udp} {<ipv6-source-prefix/prefix-length>|

<ipv6-source-address> <ipv6-source-wildcard>|

host <ipv6-source-host>|any}

{eq <sourceport>|lt <sourceport>|gt <sourceport>|ne <sourceport>}|

[range <start-range> <end-range>]

{<ipv6-destination-prefix/prefix-length>|

<ipv6-destination-address> <ipv6-destination-wildcard>

|host <ipv6-destination-host>|any}

{eq <destport>|lt <destport>|gt <destport>|ne <destport>}|

[range <start-range> <end-range>]

no <sequence-number>

Parameter

Description

<sequence-number>

<1-65535>
The sequence number for the filter entry of the
selected access control list.

deny

Specify packets to reject.

permit

Specifies the packets to permit.

send-to-cpu

Specifies the packets to send to the CPU.
Specifying this parameter could result in EPSR
healthcheck messages and other control packets
being dropped.

send-to-mirror

Specifies the packets to send to mirror port.

copy-to-cpu

Specifies the packets to copy to the CPU.

Advertising
Popular Brands
Popular manuals