| Access Control Lists
C
26
HAPTER
IPv6 ACLs
IP
6 ACL
V
S
access-list ipv6
E
XAMPLE
Console#show ip access-list standard
IP standard access-list david:
permit host 10.1.1.21
permit 168.92.0.0 255.255.15.0
Console#
R
C
ELATED
OMMANDS
permit, deny (699)
ip access-group (702)
The commands in this section configure ACLs based on IPv6 addresses,
next header type, and flow label. To configure IPv6 ACLs, first create an
access list containing the required permit or deny rules, and then bind the
access list to one or more ports.
Table 86: IPv4 ACL Commands
Command
Function
access-list ipv6
Creates an IPv6 ACL and enters configuration mode for
standard or extended IPv6 ACLs
permit, deny
Filters packets matching a specified source IPv6
address
permit, deny
Filters packets meeting the specified criteria, including
destination IPv6 address, next header type
show ipv6 access-list
Displays the rules for configured IPv6 ACLs
ipv6 access-group
Adds a port to an IPv6 ACL
show ipv6 access-group
Shows port assignments for IPv6 ACLs
This command adds an IP access list and enters configuration mode for
standard or extended IPv6 ACLs. Use the no form to remove the specified
ACL.
S
YNTAX
[no] access-list ipv6 {standard | extended} acl-name
standard – Specifies an ACL that filters packets based on the
source IP address.
extended – Specifies an ACL that filters packets based on the
destination IP address, and other more specific criteria.
acl-name – Name of the ACL. (Maximum length: 16 characters)
D
S
EFAULT
ETTING
None
– 704 –
Mode
GC
IPv6-
STD-ACL
IPv6-
EXT-ACL
PE
IC
PE