beautypg.com

Brocade Multi-Service IronWare Security Configuration Guide (Supporting R05.6.00) User Manual

Page 8

background image

viii

Multi-Service IronWare Security Configuration Guide

53-1003035-02

Extended IPv6 ACLs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .196

Configuration considerations for extended IPv6 layer 4 ACL .196
Unsupported features for Brocade NetIron CES and Brocade NetIron
CER devices . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .197
ACL syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .197
Configuration considerations for Layer 2 IPv6 ACLs . . . . . . . .204
ACL syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .204

Displaying IPv6 ACL definitions . . . . . . . . . . . . . . . . . . . . . . . . . . . .205

CAM partitioning . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .206

Applying an IPv6 ACL. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .206

Reapplying modified IPv6 ACLs. . . . . . . . . . . . . . . . . . . . . . . . .207
Applying an IPv6 ACL to a VRF Interface . . . . . . . . . . . . . . . . .207
Controlling access to a Brocade device . . . . . . . . . . . . . . . . . .208

Adding a comment to an IPv6 ACL entry . . . . . . . . . . . . . . . . . . . . .209

ACL CAM sharing for inbound IPv6 ACLs . . . . . . . . . . . . . . . . . . . . .211

Considerations when implementing this feature. . . . . . . . . . .211
Configuring ACL CAM sharing for IPv6 ACLs. . . . . . . . . . . . . . .212

Filtering and priority manipulation based on 802.1p priority . . . .212

Example using the priority force option . . . . . . . . . . . . . . . . . .212

ACL accounting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .213

Enabling and disabling ACL accounting on Brocade NetIron XMR and
Brocade MLX series devices . . . . . . . . . . . . . . . . . . . . . . . . . . .213
ACL accounting on Brocade NetIron CES 2000 and Brocade NetIron
CER 2000 devices . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .213
Enabling and disabling IPv6 ACL accounting on Brocade NetIron CES
2000 and Brocade NetIron CER 2000 devices . . . . . . . . . . . .214
Displaying statistics for IPv6 ACL accounting . . . . . . . . . . . . .215

IPv6 receive ACLs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 217

IPv6 receive ACLs overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . 217
IPv6 receive ACLs configuration considerations . . . . . . . . . . . 217
IPv6 receive ACL prerequisites . . . . . . . . . . . . . . . . . . . . . . . . .218
IPv6 receive ACL: basic configuration. . . . . . . . . . . . . . . . . . . .221
IPv6 receive ACL: additional configuration. . . . . . . . . . . . . . . .223
Syslog messages for IPv6 rACLs . . . . . . . . . . . . . . . . . . . . . . . .224
Displaying accounting information for IPv6 rACLs . . . . . . . . . .225

Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .226

See also other documents in the category Brocade Computer Accessories: