Default configuration, Command mode, User guidelines – Dell POWEREDGE M1000E User Manual

480

IPv6 Access List Commands

Default Configuration

This command has no default configuration.

Command Mode

IPv6-Access-List Configuration mode

User Guidelines

Users are permitted to add rules, but if a packet does not match any user-

specified rules, the packet is dropped by the implicit “deny all” rule.
The 'no' form of this command is not supported, since the rules within an

IPv6 ACL cannot be deleted individually. Rather, the entire IPv6 ACL must

be deleted and re specified.

Example

The following example creates rules in an IPv6 ACL named "STOP_HTTP"

to discard any HTTP traffic from the 2001:DB8::/32 network, but allow all

other traffic from that network:

console(config)#ipv6 access-list STOP_HTTP

console(Config-ipv6-acl)#deny ipv6 2001:DB8::/32 any

eq http

console(Config-ipv6-acl)#permit ipv6 2001:DB8::/32

any

console(Config-ipv6-acl)#

ipv6 access-list

The ipv6 access-list command creates an IPv6 Access Control List (ACL)

consisting of classification fields defined for the IP header of an IPv6 frame.

The

name

parameter is a case-sensitive alphanumeric string from 1 to 31

characters uniquely identifying the IPv6 access list.
If an IPv6 ACL with this name already exists, this command enters Ipv6-

Access-List config mode to update the existing IPv6 ACL.
Use the no form of the command to delete an IPv6 ACL from the system.

2CSPC4.XModular-SWUM200.book Page 480 Thursday, March 10, 2011 11:18 AM