Cisco AP775A - Nexus Converged Network Switch 5010 Command Reference Manual page 381

Chapter 6 Security Commands
S e n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a c k @ c i s c o . c o m
Examples This example shows how to configure an IPv6 ACL named acl-lab13-ipv6 with rules denying all TCP
and UDP traffic from the 2001:0db8:85a3:: and 2001:0db8:69f2:: networks to the
2001:0db8:be03:2112:: network:
switch# configure terminal
switch(config)# ipv6 access-list acl-lab13-ipv6
switch(config-ipv6-acl)# deny tcp 2001:0db8:85a3::/48 2001:0db8:be03:2112::/64
switch(config-ipv6-acl)# deny udp 2001:0db8:85a3::/48 2001:0db8:be03:2112::/64
switch(config-ipv6-acl)# deny tcp 2001:0db8:69f2::/48 2001:0db8:be03:2112::/64
switch(config-ipv6-acl)# deny udp 2001:0db8:69f2::/48 2001:0db8:be03:2112::/64
This example shows how to configure an IPv6 ACL named ipv6-eng-to-marketing with a rule that denies
all IPv6 traffic from an IPv6-address object group named eng_ipv6 to an IPv6-address object group
named marketing_group:
switch# configure terminal
switch(config)# ipv6 access-list ipv6-eng-to-marketing
switch(config-ipv6-acl)# deny ipv6 addrgroup eng_ipv6 addrgroup marketing_group
Related Commands Command
ipv6 access-list
permit (IPv6)
remark
time-range
OL-16599-01
Description
Configures an IPv6 ACL.
Configures a permit rule in an IPv6 ACL.
Configures a remark in an ACL.
Configures a time range.
Cisco Nexus 5000 Series Command Reference
deny (IPv6)
6-33