Allied Telesis AlliedWare Plus Operating System Version 5.4.4C (x310-26FT,x310-26FP,x310-50FT,x310-50FP) User Manual

IPv6 Software Access Control List (ACL) Commands

Software Reference for x310 Series Switches

37.10

AlliedWare Plus

TM

Operating System - Version 5.4.4C

C613-50046-01 REV A

Mode

Global Configuration

Default

Any traffic controlled by a software ACL that does not explicitly match a filter is denied.

Usage

Use IPv6 extended access-lists to control the transmission of IPv6 packets on an interface,
and restrict the content of routing updates. The switch stops checking the IPv6 extended
access-list when a match is encountered.

The filter entry will match on any IP protocol type packet that has the specified source and
destination IPv6 addresses and the specified IP protocol type. The parameter any may be
specified if an address does not matter.

Examples

To create the IPv6 access-list named ACL-1 to deny IP protocol 9 packets from

2001:0db8:1::1/128

to 2001:0db8:f::1/128, use the commands:

To remove the IPv6 access-list named ACL-1 to deny IP protocol 9 packets from

2001:0db8:1::1/128

to 2001:0db8:f::1/128, use the commands:

Related Commands

ipv6 access-list extended (named)
(ipv6 access-list extended IP protocol filter)
show ipv6 access-list (IPv6 Software ACLs)
show running-config

any

Any destination address or remote address.

log

Log the results.

Parameter(cont.)

Description(cont.)

Note

Software ACLs will deny access unless explicitly permitted by an ACL action.

awplus#

configure terminal

awplus(config)#

ipv6 access-list extended ACL-1 deny proto 9
2001:0db8:1::1/128 2001:0db8:f::1/128

awplus#

configure terminal

awplus(config)#

no ipv6 access-list extended ACL-1 deny proto
10 2001:0db8:1::1/128 2001:0db8:f::1/128