Permit, deny (extended ipv6 acl), Permit, deny, Permit, deny (extended ipv6 acl) (248) – Brocade Communications Systems Brocate Ethernet Access Switch 6910 User Manual

Page 298

Advertising
background image

248

Brocade 6910 Ethernet Access Switch Configuration Guide

53-1002581-01

IPv6 ACLs

11

permit, deny (Extended IPv6 ACL)

This command adds a rule to an Extended IPv6 ACL. The rule sets a filter condition for packets with
specific source or destination IP addresses, or next header type. Use the no form to remove a rule.

Syntax

{permit | deny} {any | host source-ipv6-address |

source-ipv6-address[/prefix-length]}
{any | destination-ipv6-address[/prefix-length]}
[dscp dscp] [next-header

next-header]

[time-range time-range-name]

no {permit | deny} {any | host source-ipv6-address |

source-ipv6-address[/prefix-length]}
{any | destination-ipv6-address[/prefix-length]}
[dscp dscp] [next-header

next-header]

any – Any IP address (an abbreviation for the IPv6 prefix ::/0).

host – Keyword followed by a specific source IP address.

source-ipv6-address - An IPv6 source address or network class. The address must be
formatted according to RFC 2373 “IPv6 Addressing Architecture,” using 8 colon-separated
16-bit hexadecimal values. One double colon may be used in the address to indicate the
appropriate number of zeros required to fill the undefined fields.

destination-ipv6-address - An IPv6 destination address or network class. The address
must be formatted according to RFC 2373 “IPv6 Addressing Architecture,” using 8
colon-separated 16-bit hexadecimal values. One double colon may be used in the address
to indicate the appropriate number of zeros required to fill the undefined fields.

prefix-length - A decimal value indicating how many contiguous bits (from the left) of the
address comprise the prefix; i.e., the network portion of the address. (Range: 0-128 for
source prefix, 0-8 for destination prefix)

dscp – DSCP traffic class. (Range: 0-63)

next-header – Identifies the type of header immediately following the IPv6 header.
(Range: 0-255)

time-range-name - Name of the time range. (Range: 1-30 characters)

Default Setting

None

Command Mode

Extended IPv6 ACL

Command Usage

All new rules are appended to the end of the list.

Advertising
Popular Brands
Popular manuals