Cisco 500 series Administration Manual page 408

Access Control
IPv6-Based ACLs
Cisco 500 Series Stackable Managed Switch Administration Guide
- Shutdown—Drop packets that meet the ACE criteria, and disable the
port to which the packets were addressed. Ports are reactivated from the
Port Management page.
• Time Range—Select to enable limiting the use of the ACL to a specific time
range.
• Time Range Name—If Time Range is selected, select the time range to be
used. Time ranges are described in the
• Protocol—Select to create an ACE based on a specific protocol. Select Any
(IPv6) to accept all IP protocols. Otherwise select one of the following
protocols:
- TCP—Transmission Control Protocol. Enables two hosts to communicate
and exchange data streams. TCP guarantees packet delivery, and
guarantees that packets are transmitted and received in the order they
were sent.
- UDP—User Datagram Protocol. Transmits packets but does not
guarantee their delivery.
- ICMP—Matches packets to the Internet Control Message Protocol
(ICMP).
• Protocol ID to Match—Enter the ID of the protocol to be matched.
• Source IP Address—Select Any if all source address are acceptable or
User defined to enter a source address or range of source addresses.
• Source IP Address Value—Enter the IP address to which the source IP
address is to be matched and its mask (if relevant).
• Source IP Prefix Length—Enter the prefix length of the source IP address.
• Destination IP Address—Select Any if all destination address are
acceptable or User defined to enter a destination address or a range of
destination addresses.
• Destination IP Address Value—Enter the IP address to which the
destination MAC address is matched and its mask (if relevant).
• Destination IP Prefix Length—Enter the prefix length of the IP address.
• Source Port—Select one of the following:
- Any—Match to all source ports.
Time Range section.
24
408