Allied Telesis AT-FS970M Series User Manual

Chapter 97: ACL Commands

1608

time-range

Specifies the name of a time range that is created with the TIME-
RANGE command. You must create a time range before entering it
as a parameter value. See “TIME-RANGE” on page 1624.

vid

Indicates a VLAN identifier. Specify a VLAN if you want the ACL to
filter tagged packets. Omit a VLAN if you want the ACL to filter
untagged packets. Specify a value between 1 and 4094. You can
enter only one VID.

Mode

Configuration IPv6 ACL mode

Description

Use this command to create IPv6 access control lists that filter ingress
packets based on UDP port numbers.

Examples

This example creates a UDP-based IPv6 ACL list that discards UDP
packets from any source IP address and to any destination IP address.
Then the ACL is assigned to port 6:

awplus> enable
awplus# configure terminal
awplus(config)# ipv6 access-list udpdeny
awplus(config-ipv6-acl)# deny udp any any
awplus(config-ipv6-acl)# exit
awplus(config)# interface port1.0.6
awplus(config_if)# ipv6 traffic-filter udpdeny

This example creates a UDP-based IPv6 ACL list, named
“udpcopytomirror,” that copies all ingress UDP packets that match the
ACL to the destination port of the mirror port. Then the ACL is assigned to
port 20:

awplus> enable
awplus# configure terminal
awplus(config)# ipv6 access-list udpcopytomirror
awplus(config-ipv6-acl)# copy-to-mirror udp any any
awplus(config-ipv6-acl)# exit
awplus(config)# interface port1.0.20
awplus(config_if)# ipv6 traffic-filter udpcopytomirror