Ipv6 Access-List - Juniper JUNOSE 11.1.X - COMMAND REFERENCE A TO M 4-9-2010 Command Reference Manual

JUNOSe 11.1.x Command Reference Guide A to M

ipv6 access-list

Extended IPv6 access list:
Syntax
ipv6 access-list accessListName { permit | deny } { srcIPv6Prefix |
host srcIPHost | any } { dstIPv6Prefix | host dstIPHost | any } [ log ]
no ipv6 access-list accessListName [ { permit | deny } { srcIPv6Prefix |
host srcIPv6Host | any } { dstIPv6Prefix | host dstIPv6Host | any } [ log ] ]
Command introduced before JUNOSe Release 7.1.0.
Release Information
Defines an IPv6 access list. The extended access list enables you to specify a
Description
destination address or host, precedence, and type of service. Imposes an implicit
last rule of " deny ip any any" to deny all routes that do not match previous rules in
the access list. The no version removes the IPv6 access list, the specified entry in an
access list, or the log for a specified entry.
Options
Global Configuration
Mode
1014
ipv6 access-list
accessListName String of up to 32 alphanumeric characters
permit Permits access if the conditions are matched
deny Denies access if the conditions are matched
srcIPv6Prefix—Source IPv6 address and mask length from which the packet is
being sent
srcIPv6Host—Source host IPv6 address; assumes a mask length of 128
any—Creates an address of :: with a mask length of 0
dstIPv6Prefix Destination IP address and mask length
dstIPv6Host Destination host IPv6 address to which the packet is being sent
log Logs an Info event into the ipAccessList log whenever the access-list rule is
matched