Deny (Ipv6 Access-List Configuration) - Cisco Catalyst 3560X-24P Command Reference Manual
Cisco ios release 12.2(55)se
Hide thumbs
Also See for Catalyst 3560X-24P:
- Technical specifications (6 pages) ,
- Datasheet (29 pages)
Table of Contents
Advertisement
deny (IPv6 access-list configuration)
deny (IPv6 access-list configuration)
Use the deny command in IPv6 access list configuration mode on the switch stack or on a standalone
switch to set deny conditions for an IPv6 access list. Use the no form of this command to remove the
deny conditions.
Internet Control Message Protocol
Transmission Control Protocol
User Datagram Protocol
This command is available only if you have configured a dual IPv4 and IPv6 Switch Database
Note
Management (SDM) template on the switch. This command is not supported on switches running the
LAN base feature set.
Syntax Description
protocol
source-ipv6-prefix/prefix-
length
Catalyst 3750-X and 3560-X Switch Command Reference
2-138
deny {protocol} {source-ipv6-prefix/prefix-length | any | host source-ipv6-address} [operator
[port-number]] {destination-ipv6-prefix/prefix-length | any | host destination-ipv6-address}
[operator [port-number]] [dscp value] [fragments] [log] [log-input] [routing] [sequence
value] [time-range name]
no deny {protocol} {source-ipv6-prefix/prefix-length | any | host source-ipv6-address} [operator
[port-number]] {destination-ipv6-prefix/prefix-length | any | host destination-ipv6-address}
[operator [port-number]] [dscp value] [fragments] [log] [log-input] [routing] [sequence
value] [time-range name]
deny icmp {source-ipv6-prefix/prefix-length | any | host source-ipv6-address} [operator
[port-number]] {destination-ipv6-prefix/prefix-length | any | host destination-ipv6-address}
[operator [port-number]] [icmp-type [icmp-code] | icmp-message] [dscp value] [log]
[log-input] [routing] [sequence value] [time-range name]
deny tcp {source-ipv6-prefix/prefix-length | any | host source-ipv6-address} [operator
[port-number]] {destination-ipv6-prefix/prefix-length | any | host destination-ipv6-address}
[operator [port-number]] [ack] [dscp value] [established] [fin] [log] [log-input] [neq {port |
protocol}] [psh] [range {port | protocol}] [rst] [routing] [sequence value] [syn] [time-range
name] [urg]
deny udp {source-ipv6-prefix/prefix-length | any | host source-ipv6-address} [operator
[port-number]] {destination-ipv6-prefix/prefix-length | any | host destination-ipv6-address}
[operator [port-number]] [dscp value] [log] [log-input] [neq {port | protocol}] [range {port |
protocol}] [routing] [sequence value] [time-range name]
Name or number of an Internet protocol. It can be one of the keywords ahp,
esp, icmp, ipv6, pcp, sctp, tcp, or udp, or an integer in the range from 0 to
255 representing an IPv6 protocol number.
The source IPv6 network or class of networks about which to set deny
conditions.
This argument must be in the form documented in RFC 2373 where the
address is specified in hexadecimal using 16-bit values between colons.
Chapter 2
Catalyst 3750-X and 3560-X Switch Cisco IOS Commands
OL-21522-02
Advertisement
Table of Contents
