Deny (Ipv6 Access-List Configuration) - Cisco ME 3400 Command Reference Manual
Ethernet access switch
Hide thumbs
Also See for ME 3400:
- Software configuration manual (1138 pages) ,
- Command reference manual (950 pages) ,
- Hardware installation manual (88 pages)
Table of Contents
Advertisement
Chapter 2
Cisco ME 3400 Ethernet Access Switch Cisco IOS Commands
deny (IPv6 access-list configuration)
Use the deny command in IPv6 access list configuration mode to set deny conditions for an IPv6 access
list. Use the no form of this command to remove the deny conditions.
Internet Control Message Protocol
Transmission Control Protocol
User Datagram Protocol
This command is available only if you have configured a dual IPv4 and IPv6 Switch Database
Note
Management (SDM) template on the switch.
Syntax Description
protocol
source-ipv6-prefix/prefix-
length
any
OL-9640-07
deny {protocol} {source-ipv6-prefix/prefix-length | any | host source-ipv6-address} [operator
[port-number]] {destination-ipv6-prefix/prefix-length | any | host destination-ipv6-address}
[operator [port-number]] [dscp value] [fragments] [log] [log-input] [routing] [sequence
value] [time-range name]
no deny {protocol} {source-ipv6-prefix/prefix-length | any | host source-ipv6-address} [operator
[port-number]] {destination-ipv6-prefix/prefix-length | any | host destination-ipv6-address}
[operator [port-number]] [dscp value] [fragments] [log] [log-input] [routing] [sequence
value] [time-range name]
deny icmp {source-ipv6-prefix/prefix-length | any | host source-ipv6-address} [operator
[port-number]] {destination-ipv6-prefix/prefix-length | any | host destination-ipv6-address}
[operator [port-number]] [icmp-type [icmp-code] | icmp-message] [dscp value] [log]
[log-input] [routing] [sequence value] [time-range name]
deny tcp {source-ipv6-prefix/prefix-length | any | host source-ipv6-address} [operator
[port-number]] {destination-ipv6-prefix/prefix-length | any | host destination-ipv6-address}
[operator [port-number]] [ack] [dscp value] [established] [fin] [log] [log-input] [neq {port |
protocol}] [psh] [range {port | protocol}] [rst] [routing] [sequence value] [syn] [time-range
name] [urg]
deny udp {source-ipv6-prefix/prefix-length | any | host source-ipv6-address} [operator
[port-number]] {destination-ipv6-prefix/prefix-length | any | host destination-ipv6-address}
[operator [port-number]] [dscp value] [log] [log-input] [neq {port | protocol}] [range {port |
protocol}] [routing] [sequence value] [time-range name]
Name or number of an Internet protocol. It can be one of the keywords ahp,
esp, icmp, ipv6, pcp, sctp, tcp, or udp, or an integer in the range from 0 to
255 representing an IPv6 protocol number.
The source IPv6 network or class of networks about which to set deny
conditions.
This argument must be in the form documented in RFC 2373 where the
address is specified in hexadecimal using 16-bit values between colons.
An abbreviation for the IPv6 prefix ::/0.
Cisco ME 3400 Ethernet Access Switch Command Reference
deny (IPv6 access-list configuration)
2-65
Hide quick links:
Advertisement
Table of Contents
