beautypg.com

Syslog messages for ipv6 racls, Configuring ipv6 racl with copy-sflow – Brocade Multi-Service IronWare Security Configuration Guide (Supporting R05.6.00) User Manual

Page 242

background image

224

Multi-Service IronWare Security Configuration Guide

53-1003035-02

IPv6 receive ACLs

4

Brocade(config-ipv6-access-list b1)# permit ipv6 any any

Brocade(config-ipv6-access-list b1)# exit

Specifying the destination mirror port for physical ports
In the following example, ports “ethernet 3/1” and “ethernet 3/2” belong to the same PPCR. To
specify “ethernet 5/1” as the destination mirror port for these ports, use the following commands:

Brocade(config)# interface ethernet 3/1

Brocade(config-if-e1000-3/1)# acl-mirror-port ethernet 5/1

Brocade(config-if-e1000-3/1)#interface ethernet 3/2

Brocade(config-if-e1000-3/2)# acl-mirror-port ethernet 5/1

Applying the IPv6 rACL
To apply the IPv6 rACL, enter the following command:

Brocade(config)#ipv6 receive access-list b1 sequence 15

Configuring IPv6 rACL with copy-sflow

You can direct data matching an IPv6 ACL permit clause, to the sFlow collector by specifying “copy
sflow” when creating the IPv6 ACL. Configuring IPv6 rACL with “copy-sflow” requires the following
steps:

1.

Creating an IPv6 ACL that directs traffic to the sFlow collector

2.

Applying the IPv6 rACL

Creating an IPv6 ACL that directs traffic to the sFlow collector
To create a named ACL “b1” that directs traffic to the sFlow collector, enter the following
commands:

Brocade(config)#ipv6 access-list b1

Brocade(config-ipv6-access-list b1)# permit ipv6 any any copy-sflow

Brocade(config-ipv6-access-list b1)# exit

Applying the IPv6 rACL
To apply the IPv6 rACL, enter the following command:

Brocade(config)#ipv6 receive access-list b1 sequence 15

Syslog messages for IPv6 rACLs

The following Syslog messages will be logged corresponding to the commands and conditions
indicated.

1. ipv6 receive rebind-acl-all

SYSLOG: <14>Jun 6 10:37:54 FWD14 IPv6-rACL: rebinded by operator from console

session.

2. ipv6 receive deactivate-acl-all

SYSLOG: <14>Jun 6 10:38:14 FWD14 IPv6-rACL: deactivated by operator from console

session.

3. no ipv6 receive deactivate-acl-all

See also other documents in the category Brocade Computer Accessories: