2 configuration commands, 1 ipv6 access-list – Fortinet 548B User Manual

- 398 -

Command Mode

Privileged EXEC

User EXEC

Display Message

Rule Number: The ordered rule number identifier defined within the IPv6 ACL.

Action: The action associated with each rule. The possible values are Permit or Deny.

Match All: Indicates whether this access list applies to every packet. Possible values are True or
False.

Protocol: The protocol to filter for this rule.

Source IP Address: The source IP address for this rule.

Source L4 Port Keyword: The source port for this rule.

Destination IP Address: The destination IP address for this rule.

Destination L4 Port Keyword: The destination port for this rule.

IP DSCP: The value specified for IP DSCP.

Flow Label: The value specified for IPv6 Flow Label.

Log: Displays when you enable logging for the rule.

Assign Queue: The queue identifier to which packets matching this rule are assigned.

Mirror Interface: The slot/port to which packets matching this rule are copied.

Redirect Interface: The slot/port to which packets matching this rule are forwarded.

7.23.2

Configuration Commands

7.23.2.1 ipv6 access-list

This command creates an IPv6 Access Control List (ACL) identified by <name>, consisting of
classification fields defined for the IP header of an IPv6 frame. The <name> parameter is a
case-sensitive alphanumeric string from 1 to 31 characters

uniquely identifying the IPv6 access list.

If an IPv6 ACL by this name already exists, this command enters IPv6-Access-List config mode to allow
updating the existing IPv6 ACL.

Syntax

ipv6 access-list <name>
no ipv6 access-list <name>

<name> - access-list name up to 31 characters in length.

no - This command deletes the IPv6 ACL identified by <name> from the system.