Filtering switched ipv6 traffic inbound on a vlan – HP 6200YL User Manual

IPv6 Access Control Lists (ACLs)

Adding or Removing an ACL Assignment On an Interface

Adding or Removing an ACL Assignment
On an Interface

Filtering Switched IPv6 Traffic Inbound on a VLAN

For a given VLAN interface, you can assign an ACL as a VACL to filter switched
IPv6 traffic entering the switch on that VLAN. You can also use the same ACL
for assignment to multiple VLANs. For limits and operating rules, refer to “ACL
Configuration and Operating Rules” on page 8-30.

Syntax: [no] vlan < vid > ipv6 access-group < identifier > vlan

Assigns an ACL as a VACL to a VLAN to filter switched IPv6
traffic entering the switch on that VLAN. You can use either
the global configuration level or the VLAN context level to
assign or remove a VACL.
< vid >: VLAN Identification Number.
< identifier >: The alphanumeric name by which the ACL can
be accessed. An identifier can have up to 64 characters.

The

no form of the command removes the ACL assignment

from the interface.

Note: The switch allows you to assign an “empty” ACL
identifier to a VLAN. In this case, if you later populate the
ACL with ACEs, the new ACEs automatically become active
on the assigned VLAN as they are created. Also, if you delete
an assigned ACL from the switch without also using the
“

no” form of this command to remove the assignment to a

VLAN, the ACL assignment remains as an “empty” ACL.
For more on “empty” ACLs, refer to the notes under
“Deleting an ACL” on page 8-62.

8-59