Cisco Nexus 7000 Series Command Reference Manual page 836

show ipv6 access-lists
• Whether per-entry statistics are configured for the ACL.
• Whether the fragments command is configured for the ACL.
• The number of rules in the ACL configuration. This number does not reflect how many entries that the
• The interfaces that the ACL is applied to.
• The interfaces that the ACL is active on.
The show ipv6 access-lists command displays statistics for each entry in an ACL if the following conditions
are both true:
• The ACL configuration contains the statistics per-entry command.
• The ACL is applied to an interface that is administratively up.
If an IP ACL includes the fragments command, it appears before the explicit permit and deny rules, but the
device applies the fragments command to noninitial fragments only if they do not match all other explicit
rules in the ACL.
This command does not require a license.
Examples This example shows how to use the show ipv6 access-lists command to display all IPv6 ACLs on a device
that has a single IPv6 ACL:
switch# show ipv6 access-lists
IPv6 access list ipv6-main-filter
This example shows how to use the show ipv6 access-lists command to display an IPv6 ACL named
ipv6-RandD-outbound-web, including per-entry statistics for the entries except for the LowerLab object group:
switch# show ipv6 access-lists ipv6-RandD-outbound-web
IPv6 access list ipv6-RandD-outbound-web
This example shows how to use the show ipv6 access-lists command to display an IPv6 ACL named
ipv6-RandD-outbound-web. The expanded keyword causes the contents of the object group from the previous
example to appear, including the per-entry statistics:
switch# show ipv6 access-lists ipv6-RandD-outbound-web expanded
IPv6 access list ipv6-RandD-outbound-web
This example shows how to use the show ipv6 access-lists command with the summary keyword to display
information about an IPv6 ACL named ipv6-RandD-outbound-web, such as which interfaces the ACL is
applied to and active on:
switch# show ipv6 access-lists ipv6-RandD-outbound-web summary
IPV6 ACL ipv6-RandD-outbound-web
Cisco Nexus 7000 Series Security Command Reference
810
ACL contains when the device applies it to an interface. If a rule in the ACL uses an object group, the
number of entries in the ACL when it is applied may be much greater than the number of rules.
10 permit ipv6 any any
statistics per-entry
fragments deny-all
1000 permit ahp any any [match=732]
1005 permit tcp addrgroup LowerLab any eq telnet
1010 permit tcp any any eq www [match=820421]
statistics per-entry
1000 permit ahp any any [match=732]
1005 permit tcp 2001:db8:0:3ab0::1/128 any eq telnet [match=5032]
1005 permit tcp 2001:db8:0:3ab0::32/128 any eq telnet [match=433]
1010 permit tcp any any eq www [match=820421]
Statistics enabled
Show Commands