beautypg.com

Show ipv6 access-list – Brocade 6910 Ethernet Access Switch Configuration Guide (Supporting R2.2.0.0) User Manual

Page 299

background image

Brocade 6910 Ethernet Access Switch Configuration Guide

243

53-1002651-02

11

IPv6 ACLs

Optional internet-layer information is encoded in separate headers that may be placed
between the IPv6 header and the upper-layer header in a packet. There are a small number of
such extension headers, each identified by a distinct Next Header value. IPv6 supports the
values defined for the IPv4 Protocol field in RFC 1700, including these commonly used
headers:
0

: Hop-by-Hop Options (RFC 2460)

6

: TCP Upper-layer Header (RFC 1700)

17 : UDP Upper-layer Header (RFC 1700)
43 : Routing (RFC 2460)
44 : Fragment (RFC 2460)
51 : Authentication (RFC 2402)
50 : Encapsulating Security Payload (RFC 2406)
60 : Destination Options (RFC 2460)

Example
This example accepts any incoming packets if the destination address is 2009:DB9:2229::79/8.

Console(config-ext-ipv6-acl)#permit 2009:DB9:2229::79/8

Console(config-ext-ipv6-acl)#

This allows packets to any destination address when the DSCP value is 5.

Console(config-ext-ipv6-acl)#permit any dscp 5

Console(config-ext-ipv6-acl)#

This allows any packets sent to the destination 2009:DB9:2229::79/48 when the next header is
43.

Console(config-ext-ipv6-acl)#permit 2009:DB9:2229::79/48 next-header 43

Console(config-ext-ipv6-acl)#

Related Commands

“access-list ipv6”

on page 240

“Time Range”

on page 101

show ipv6 access-list

This command displays the rules for configured IPv6 ACLs.

Syntax

show ipv6 access-list {standard | extended} [acl-name]

standard – Specifies a standard IPv6 ACL.

extended – Specifies an extended IPv6 ACL.

acl-name – Name of the ACL. (Maximum length: 16 characters)

Command Mode
Privileged Exec

Example

Console#show ipv6 access-list standard

IPv6 standard access-list david:

permit host 2009:DB9:2229::79

permit 2009:DB9:2229:5::/64

Console#