Ipv6 access-list (udp) – Allied Telesis AT-8100 Series User Manual

Chapter 99: ACL Commands

1628

IPV6 ACCESS-LIST (UDP)

Syntax

action

deny|permit|copy-to-mirror

udp

scr_ip_address

any|host eq|lt|gt|ne|range dest_ipaddress

any|host|range

eq|lt|gt|ne|range

time-range

vlan

<

vid

>

Parameters

action

Specifies the action of the ACL. Here are the possible actions:

permit: Forwards all ingress packets that match the ACL.

deny: Discards all ingress packets that match the ACL.

copy-to-mirror: Copies all ingress packets that match the ACL to
the destination port of the mirror port. This action must be used
together with the port mirror feature, explained in Chapter 27,
“Port Mirror” on page 465.

src_ip_address

Specifies the source IPv6 address of the ingress packets the
access list should filter. Choose from the following options:

any: Matches any IPv6 address.

ipaddress/mask: Matches packets that have a source IPv6
address of a subnet or an end node in the X:X::X:X/mask
format. The mask is a decimal number that represents the
number of bits in the address, from left to right, that constitute
the network portion of the address. The IP address and the
mask are separated by a slash (/); for example, 2001:odb8::a2/
64.

host ipaddress: Matches packets with a source IPv6 address
and is an alternative to the IPADRESS/MASK variable for
addresses of specific end nodes. The HOST keyword indicates
that the address is of a specific end node and that no mask is
required.

eq

Matches packets that are equal to the UDP port number specified
by the src_ipaddress parameter.

lt

Matches packets that are less than the UDP port number specified
by the src_ipaddress parameter.