beautypg.com

Ipv6 access-list – Allied Telesis AT-S95 CLI User Manual

Page 29

background image

ACL Commands

Page 29

Default Configuration

No IPv4 Access List is defined.

Command Mode

IP Access-list Configuration mode

User Guidelines

Enter IP-Access List configuration mode by using the ip access-list Global Configuration mode command.

After an access control entry (ACE) is added to an access control list, an implied deny-any-any condition

exists at the end of the list. That is, if there are no matches, the packets are denied. However, before the first
ACE is added, the list permits all packets.

Example

The following example defines a permit statement for an IP ACL.

ipv6 access-list

The ipv6 access-list Global Configuration mode command defines an IPv6 Access List and places the device in
IPv6 Access List Configuration mode. Use the no form of this command to remove the Access List.

Syntax

ipv6 access-list access-list-name

no ipv6 access-list access-list-name

Parameters

access-list-name — Name of the IPv6 Access List. (Range: 1 - 32 characters)

General Routing Encapsulation

gre

47

Encapsulating Security Payload (50)

esp

50

Authentication Header

ah

51

ICMP for IPv6

ipv6-icmp

58

EIGRP routing protocol

eigrp

88

Open Shortest Path Protocol

ospf

89

Protocol Independent Multicast

pim

103

Layer Two Tunneling Protocol

l2tp

115

ISIS over IPv4

isis

124

(any IP protocol)

any

25504

console(config)# ip-access-list ip-acl1
console(config-ip-al)# deny rsvp 192.1.1.1 0.0.0.255 any

IP Protocol

Abbreviated Name

Protocol Number

See also other documents in the category Allied Telesis Computer hardware: