Brocade Communications Systems Brocate Ethernet Access Switch 6910 User Manual

868

Brocade 6910 Ethernet Access Switch Configuration Guide

53-1002581-01

Access Control Lists

41

Optional internet-layer information is encoded in separate headers that may be placed
between the IPv6 header and the upper-layer header in a packet. There are a small number of
such extension headers, each identified by a distinct Next Header value. IPv6 supports the
values defined for the IPv4 Protocol field in RFC 1700, and includes these commonly used
headers:

0

:

Hop-by-Hop Options (RFC 2460)

6

:

TCP Upper-layer Header (RFC 1700)

17 :

UDP Upper-layer Header (RFC 1700)

43 : Routing

(RFC

2460)

44 : Fragment

(RFC

2460)

50 :

Encapsulating Security Payload (RFC 2406)

51 :

Authentication (RFC 2402)

60 :

Destination Options (RFC 2460)

Interface

To add rules to an Extended IPv6 ACL:

1. Click Security, ACL.

2. Select Configure ACL from the Step list.

3. Select Add Rule from the Action list.

4. Select IPv6 Extended from the Type list.

5. Select the name of an ACL from the Name list.

6. Specify the action (i.e., Permit or Deny).

7. Select the address type (Any or IPv6-prefix).

8. If you select “Host,” enter a specific address. If you select “IPv6-prefix,” enter a subnet address

and prefix length.

9. Set any other required criteria, such as DSCP, or next header type.

10. Click Apply.