Table of Contents
Advertisement
ACL Commands
78-20269-01 Command Line Interface Reference Guide
separate data link layer protocol; therefore, by default, IPv4 ACLs implicitly allow
ARP packets to be sent and received on an interface.
Example
Switch (config)# ipv6 access-list acl1
Switch(config-ipv6-acl)# permit tcp 2001:0DB8:0300:0201::/64 any any 80
40.5
permit ( IPv6 )
Use the permit command in IPv6 Access-list Configuration mode to set permit
conditions (ACEs) for IPv6 ACLs.
Syntax
protocol {any | { source-prefix/length}{any | destination- prefix/length} [dscp
permit
number | precedence number]
{any | {source-prefix/length}{any | destination- prefix/length}
permit icmp
{any| i cmp-type} {any| i cmp-code} [dscp number | precedence number]
{any | {source-prefix/length} {any | source-port/port-range}}{any |
permit tcp
destination- prefix/length} {any| destination-port/port-range} [dscp number |
precedence number] [match-all list-of-flags]
udp {any | {source-prefix/length}} {any | source-port/port-range}}{any |
permit
destination- prefix/length} {any| destination-port/port-range} [dscp number |
precedence number]
Parameters
•
protocol—The name or the number of an IP protocol. Available protocol
names are: icmp (58), tcp (6) and udp (17). To match any protocol, use the
ipv6 keyword. (Range: 0–255)
•
source-prefix/length—The source IPv6 network or class of networks about
which to set permit conditions. This argument must be in the form
documented in RFC 3513 where the address is specified in hexadecimal
using 16-bit values between colons.
•
destination-prefix/length—The destination IPv6 network or class of
networks about which to set permit conditions. This argument must be in
the form documented in RFC 3513 where the address is specified in
hexadecimal using 16-bit values between colons.
40
540
Advertisement
Table of Contents
