Deny (Ipv6) - Cisco Nexus 7000 Series Command Reference Manual
Hide thumbs
Also See for Nexus 7000 Series:
- Reference manual (746 pages) ,
- Configuration manual (536 pages) ,
- Hardware installation and reference manual (508 pages)
Table of Contents
Advertisement
D Commands
deny (IPv6)
deny (IPv6)
To create an IPv6 ACL rule that denies traffic matching its conditions, use the deny command. To remove a
rule, use the no form of this command.
General Syntax
[ sequence-number ] deny protocol source destination [dscp dscp] [flow-label flow-label-value] [fragments]
[log] [time-range time-range-name] [packet-length operator packet-length [ packet-length ]]
no deny protocol source destination [dscp dscp] [flow-label flow-label-value] [fragments] [log] [time-range
time-range-name] [packet-length operator packet-length [ packet-length ]]
no sequence-number
Internet Control Message Protocol
[sequence-number| no] deny icmp source destination [icmp-message| icmp-type [ icmp-code ]] [dscp dscp]
[flow-label flow-label-value] [fragments] [log] [time-range time-range-name] [packet-length operator
packet-length [ packet-length ]]
Internet Protocol v6
[ sequence-number ] deny ipv6 source destination [dscp dscp] [flow-label flow-label-value] [fragments]
[log] [time-range time-range-name] [packet-length operator packet-length [ packet-length ]]
Stream Control Transmission Protocol
[sequence-number| no] deny sctp source [operator port [ port ]| portgroup portgroup] destination [operator
port [ port ]| portgroup portgroup] [dscp dscp] [flow-label flow-label-value] [fragments] [log] [time-range
time-range-name] [packet-length operator packet-length [ packet-length ]]
Transmission Control Protocol
[ sequence-number ] deny tcp source [operator port [ port ]| portgroup portgroup] destination [operator
port [ port ]| portgroup portgroup] [dscp dscp] [flow-label flow-label-value] [fragments] [log] [time-range
time-range-name] [ flags ] [established] [packet-length operator packet-length [ packet-length ]]
User Datagram Protocol
[sequence-number| no] deny udp source [operator port [ port ]| portgroup portgroup] destination [operator
port [ port ]| portgroup portgroup] [dscp dscp] [flow-label flow-label-value] [fragments] [log] [time-range
time-range-name] [packet-length operator packet-length [ packet-length ]]
Cisco Nexus 7000 Series Security Command Reference
243
Advertisement
Table of Contents
