Configuring A Layer 2 Acl - HP FlexNetwork MSR Series Configuration Manuals

Step
2. Create an IPv6 advanced
ACL and enter its view.
3. (Optional.)
description
advanced ACL.
4. (Optional.)
numbering step.
5. Create or edit a rule.
6. (Optional.) Add or edit a rule
comment.

Configuring a Layer 2 ACL

Layer 2 ACLs, also called "Ethernet frame header ACLs," match packets based on Layer 2 Ethernet
header fields, such as:
•
Source MAC address.
•
Destination MAC address.
Command
acl ipv6 advanced { acl-number |
name acl-name } [ match-order
{ auto | config } ]
Configure a
for the IPv6
description text
Set the rule
step step-value
rule [ rule-id ] { deny | permit }
protocol [ { { ack ack-value | fin
fin-value | psh psh-value | rst
rst-value | syn syn-value | urg
urg-value } * | established } |
counting
{
address-group-name
dest-address
dest-address/dest-prefix | any } |
destination-port { object-group
port-group-name | operator port1
[ port2 ] } | dscp dscp | flow-label
flow-label-value
icmp6-type
icmp6-code | icmp6-message } |
logging
routing-type ] | hop-by-hop [ type
hop-type
{
address-group-name
source-address source-prefix |
source-address/source-prefix
any
{ object-group port-group-name |
operator port1 [ port2 ] } |
time-range time-range-name |
vpn-instance
vpn-instance-name ] *
rule rule-id comment text
destination
|
object-group
|
dest-prefix |
| fragment |
{ icmp6-type
| routing [ type
] | source
object-group
|
|
} | source-port
13
Remarks
By default, no ACLs exist.
The value range for a numbered
IPv6 advanced ACL is 3000 to
3999.
Use the acl ipv6 advanced
acl-number command to enter the
view of a numbered
advanced ACL.
Use the acl ipv6 advanced
name acl-name command to
enter the view of a named IPv6
advanced ACL.
By default, an IPv6 advanced
ACL does not have a description.
The default setting is 5.
By default, no IPv6 advanced
ACL rules exist.
The logging keyword takes effect
only when the module
example, packet filtering) that
uses the ACL supports logging.
By default, no rule comment is
configured.
IPv6
(for