Displaying ipv6 acls – Brocade FastIron Ethernet Switch Security Configuration Guide User Manual

Displaying IPv6 ACLs

To display the IPv6 ACLs configured on a device, enter the show ipv6 access-list command. Here is
an example.

device#show ipv6 access-list

ipv6 access-list v6-ACL1: 1 entries

deny ipv6 any any

ipv6 access-list v6-ACL2: 1 entries

permit ipv6 any any

ipv6 access-list v6-ACL3: 2 entries

deny ipv6 2001:DB8:10::/64 any

permit ipv6 any any

ipv6 access-list v6-ACL4: 2 entries

deny ipv6 2001:DB8::/64 any

permit ipv6 any any

ipv6 access-list rate-ACL: 1 entries

permit ipv6 any any traffic-policy rate800M

ipv6 access-list v6-ACL5: 8 entries

permit tcp 2001:DB8::/64 any

permit ipv6 2001:DB8::/64 any

permit ipv6 2001:DB8:101::/64 any

permit ipv6 2001:DB8:10::/64 2001:DB8:102::/64

permit ipv6 host 2001:DB8:aa:10::102 host 2001:DB8:101::102

permit ipv6 host 2001:DB8:10::101 host 2001:DB8:101::101 dscp-matching 0

dscp-marking 63 dscp-cos-mapping

permit ipv6 any any dscp-matching 63 dscp-cos-mapping

permit ipv6 any any fragments

Syntax: show ipv6 access-list

To display a specific IPv6 ACL configured on a device, enter the show ipv6 access-list command
followed by the ACL name. The following example shows the ACL named "rtr".

device#show ipv6 access-list rtr

ipv6 access-list rtr: 3 entries

remark This entry permits ipv6 packets from 2001:DB8::2 to any destination

permit ipv6 host 2001:DB8::2 any

remark This entry denies udp packets from any source to any destination

deny udp any any

remark This entry denies IPv6 packets from any source to any destination

deny ipv6 any any

Syntax: show ipv6 access-list [ access-list-name ]

For the access-list-name parameter, specify the name of an IPv6 ACL created using the ipv6
access-list command.

Displaying IPv6 ACLs

168

FastIron Ethernet Switch Security Configuration Guide

53-1003088-03