Configuring an extended ipv6 acl – LevelOne GTL-2691 User Manual

Page 363

Advertising
background image

C

HAPTER

13

| Security Measures

Access Control Lists

– 363 –

C

ONFIGURING

AN

E

XTENDED

IP

V

6 ACL

Use the Security > ACL (Configure ACL - Add Rule - IPv6 Extended) page

to configure an Extended IPv6 ACL.

CLI R

EFERENCES

"permit, deny (Extended IPv6 ACL)" on page 982

"show ipv6 access-list" on page 984

"Time Range" on page 817

P

ARAMETERS

These parameters are displayed:

Type – Selects the type of ACLs to show in the Name list.

Name – Shows the names of ACLs matching the selected type.

Action – An ACL can contain any combination of permit or deny rules.

Destination Address Type – Specifies the destination IP address. Use

“Any” to include all possible addresses, or “IPv6-prefix” to specify a

range of addresses. (Options: Any, IPv6-prefix; Default: Any)

Destination IPv6 Address – An IPv6 address or network class. The

address must be formatted according to RFC 2373 “IPv6 Addressing

Architecture,” using 8 colon-separated 16-bit hexadecimal values. One

double colon may be used in the address to indicate the appropriate

number of zeros required to fill the undefined fields. (The switch only

checks the first 64 bits of the destination address.)

Destination Prefix-Length – A decimal value indicating how many

contiguous bits (from the left) of the address comprise the prefix; i.e.,

the network portion of the address. (Range: 0-64 bits)

DSCP – DSCP traffic class. (Range: 0-63)

Next Header – Identifies the type of header immediately following the

IPv6 header. (Range: 0-255)
Optional internet-layer information is encoded in separate headers that

may be placed between the IPv6 header and the upper-layer header in

a packet. There are a small number of such extension headers, each

identified by a distinct Next Header value. IPv6 supports the values

defined for the IPv4 Protocol field in RFC 1700, and includes these

commonly used headers:
0 : Hop-by-Hop Options (RFC 2460)

6 : TCP Upper-layer Header (RFC 1700)

17 : UDP Upper-layer Header (RFC 1700)

43 : Routing (RFC 2460)

44 : Fragment (RFC 2460)

50 : Encapsulating Security Payload (RFC 2406)

51 : Authentication (RFC 2402)

60 : Destination Options (RFC 2460)

Advertising
Popular Brands
Popular manuals