Show ipv6 access-list – Brocade 6910 Ethernet Access Switch Configuration Guide (Supporting R2.2.0.0) User Manual
Page 299
Brocade 6910 Ethernet Access Switch Configuration Guide
243
53-1002651-02
11
IPv6 ACLs
•
Optional internet-layer information is encoded in separate headers that may be placed
between the IPv6 header and the upper-layer header in a packet. There are a small number of
such extension headers, each identified by a distinct Next Header value. IPv6 supports the
values defined for the IPv4 Protocol field in RFC 1700, including these commonly used
headers:
0
: Hop-by-Hop Options (RFC 2460)
6
: TCP Upper-layer Header (RFC 1700)
17 : UDP Upper-layer Header (RFC 1700)
43 : Routing (RFC 2460)
44 : Fragment (RFC 2460)
51 : Authentication (RFC 2402)
50 : Encapsulating Security Payload (RFC 2406)
60 : Destination Options (RFC 2460)
Example
This example accepts any incoming packets if the destination address is 2009:DB9:2229::79/8.
Console(config-ext-ipv6-acl)#permit 2009:DB9:2229::79/8
Console(config-ext-ipv6-acl)#
This allows packets to any destination address when the DSCP value is 5.
Console(config-ext-ipv6-acl)#permit any dscp 5
Console(config-ext-ipv6-acl)#
This allows any packets sent to the destination 2009:DB9:2229::79/48 when the next header is
43.
Console(config-ext-ipv6-acl)#permit 2009:DB9:2229::79/48 next-header 43
Console(config-ext-ipv6-acl)#
Related Commands
show ipv6 access-list
This command displays the rules for configured IPv6 ACLs.
Syntax
show ipv6 access-list {standard | extended} [acl-name]
standard – Specifies a standard IPv6 ACL.
extended – Specifies an extended IPv6 ACL.
acl-name – Name of the ACL. (Maximum length: 16 characters)
Command Mode
Privileged Exec
Example
Console#show ipv6 access-list standard
IPv6 standard access-list david:
permit host 2009:DB9:2229::79
permit 2009:DB9:2229:5::/64
Console#