beautypg.com

Ipv6 access-list named icmp filter) – Allied Telesis AlliedWare Plus Operating System Version 5.4.4C (x310-26FT,x310-26FP,x310-50FT,x310-50FP) User Manual

Page 939

background image

IPv6 Hardware Access Control List (ACL) Commands

Software Reference for x310 Series Switches

C613-50046-01 REV A

AlliedWare Plus

TM

Operating System - Version 5.4.4C

36.7

(ipv6 access-list named ICMP filter)

Use this ACL filter to add a filter entry for an IPv6 source and destination address and
prefix, with ICMP (Internet Control Message Protocol) packets, to the current named IPv6
access-list. If a sequence number is specified, the new entry is inserted at the specified
location. Otherwise, the new entry is added at the end of the access-list.

Note that specifying the send-to-cpu parameter could result in EPSR healthcheck
messages and other control packets being dropped.

As an optional parameter vlan can be matched for tagged (802.1q) packet.

The no variant of this command removes a filter entry for an IPv6 source and destination
address and prefix, with ICMP (Internet Control Message Protocol) packets, from the
current named IPv6 access-list. You can specify the filter entry for removal by entering
either its sequence number, or its filter entry profile.

Syntax

[ip|icmp]

[<sequence-number>

{deny|permit|send-to-cpu|send-to-mirror|copy-to-cpu|copy-to-

mirror}

{ipv6|icmp}

{<ipv6-source-address/prefix-length>|

<ipv6-source-address> <ipv6-source-wildcard>|

host <ipv6-source-host>|any}

{<ipv6-destination-address/prefix-length>|

<ipv6-destintation-addr> <ipv6-destination-wildcard>|

host <ipv6-destination-host-address>|any} [<icmp-type>]

[vlan <1-4094>]

no [<sequence-number>]

{deny|permit|send-to-cpu|send-to-mirror|copy-to-cpu|copy-to-

mirror}

{ip|icmp}

{<ipv6-source-address/prefix-length>|

<ipv6-source-address> <ipv6-source-wildcard>|

host <ipv6-source-host>|any}

{<ipv6-destination-address/prefix-length>|

<ipv6-destination-address> <ipv6-destination-wildcard>|

host <ipv6-destination-host-address>|any} [<icmp-type>]

[vlan <1-4094>]

no [<sequence-number>]

Note

Hardware ACLs will permit access unless explicitly denied by an ACL action.

Parameter

Description

<sequence-number>

<1-65535>
The sequence number for the filter entry of the
selected access control list.

deny

Specifies the packets to reject.

permit

Specifies the packets to permit.

See also other documents in the category Allied Telesis Computer hardware: