HP 6200YL User Manual

Page 186

Advertising
background image

IPv6 Access Control Lists (ACLs)
Terminology

ACL ID:

An alphanumeric string used to identify an ACL. See also

identifier

and

name-str.

Note:

RADIUS-assigned ACLs are identified by client authentication data

and do not use the ACL ID strings described in this chapter.

ACL Prefix:

Follows any IPv6 address listed in an IPv6 ACE. Analogous to

the ACL mask used with IPv4 ACEs. Specifies the number of leftmost,
contiguous bits in a packet’s corresponding IPv6 addressing that must
exactly match the IPv6 addressing in the ACE, and which bits need not
match (wildcards). Refer to “How an ACE Uses a Prefix To Screen Packets
for SA and DA Matches” on page 8-32.)

Address Family:

Used in this manual to refer to the version of the IP protocol

running on the switch; IPv4 and IPv6.

CIDR:

The acronym for Classless Inter-Domain Routing. In IPv6 ACEs, CIDR

notation is used to specify the prefix length for SA and DA address criteria.
For example, the length of the following prefix includes the first 48 bits
of an address: 2001:db8:101::/48

DA:

The acronym for Destination Address. In an IPv6 packet, this is the

destination IPv6 address carried in the header, and identifies the packet’s
destination. This is the second of two IPv6 addresses used in an ACE to
determine whether there is a match between an IPv6 packet and the ACE.
See also “SA”.

Deny:

An ACE configured with this action causes the switch to drop an IPv6

packet for which there is a match within an applicable ACL.

Empty ACL:

An ACL that is not populated with any explicit ACEs, and

functions only as a placeholder. An ACL exists in this state if any one of
the following occurs:

An ACL identifier has been created in the running config file with the
ipv6 access-list < name-str > command, but no explicit ACEs exist in
the ACL.

An ACL identifier has been assigned to an interface without first
populating the ACL with ACEs. If the empty ACL did not already exist
in the running config file, assigning the identifier to an interface
automatically creates the empty ACL in the running config file.

An ACL configured with one or more explicit ACEs has been deleted
from the running config file while the ACL is still assigned to an
interface.

8-10

Advertising
This manual is related to the following products:

8200ZL

Popular Brands
Popular manuals