Ble 174. named ipv6 acl example 4 – Allied Telesis AT-8100 Series User Manual

Chapter 98: Advanced Access Control Lists (ACLs)

1544

This example creates a protocol ACL, called “protocopytomirror,” that
copies RDP packets (protocol type 27) from IPv6 source address
2001:0db8::a2:1c50/64 to any IPv6 destination address:

Define a Named IPv6 Address ACL that
filters TCP packets based on source and
destination IP addresses.

action tcp scr_ip_address

eq|lt|gt|ne src_tcp_port

dest_ipaddress

eq|lt|gt|ne|range

dest_tcp_port time-range vlan

Define a Named IPv6 Address ACL that
filters UDP packets based on source and
destination IPv6 addresses.

action udp scr_ip_address

eq|lt|gt|ne

/

range

dest_ipaddress

eq|lt|gt|ne|range

time-range vlan

Table 173. IPv6 ACCESS-LIST Commands for Creating ACLs (Continued)

To do this task

Use this Command

Table 174. Named IPv6 ACL Example

Command Description

awplus> enable

Enter the Privileged Executive mode
from the User Executive mode.

awplus# configure terminal

Enter the Global Configuration mode.

awplus(config)# ipv6 access-list
protocopytomirror

Create a named IPv6 ACL called
“protocopytomirror” and enter the IPv6
ACL mode.

awplus(config-ip-acl)# copy-to-mirror
proto 27 2001:0db8::a2:1c50/64 any

Allow the filter to copy RDP packets from
source IPv6 address
2001:0db8::a2:1c50 with a subnet mask
of 64 to any destination IPv6 address.