beautypg.com

10 show access-lists, 9 ipv6 access control list (acl) commands, 1 ipv6 access-list – Kontron AT8404 CLI User Manual

Page 209: Show access-lists - 35, 9 ipv6 access control list (acl) commands - 35, Ipv6 access-list - 35, At8404 quality of service (qos) commands

background image

AT8404

Quality of Service (QoS) Commands

Page 3 - 35

AT8404 CLI Reference Manual

3.8.10

show access-lists

This command displays IP ACLs, IPv6 ACLs, and MAC access control lists information for a designated interface
and direction.

3.9

IPv6 Access Control List (ACL) Commands

This section describes the commands you use to configure IPv6 ACL settings. IPv6 ACLs ensure that only
authorized users have access to specific resources and block any unwarranted attempts to reach network
resources.

The following rules apply to IPv6 ACLs:

The maximum number of ACLs you create is 100, regardless of type.

The system supports only Ethernet II frame types.

The maximum number of rules per IPv6 ACL is hardware dependent.

3.9.1

ipv6 access-list

This command creates an IPv6 Access Control List (ACL) identified by , consisting of classification fields
defined for the IP header of an IPv6 frame. The parameter is a case-sensitive alphanumeric string from 1
to 31 characters uniquely identifying the IPv6 access list.

Destination IP

Mask

The destination IP Mask for this rule.

Destination L4 Port

Keyword

The destination port for this rule.

IP DSCP

The value specified for IP DSCP.

IP Precedence

The value specified IP Precedence.

IP TOS

The value specified for IP TOS.

Log

Displays when you enable logging for the rule.

Assign Queue

The queue identifier to which packets matching this rule are assigned.

Mirror Interface

The slot/port to which packets matching this rule are copied.

Redirect Interface The slot/port to which packets matching this rule are forwarded.

Format

show access-lists interface in

Mode

Privileged EXEC

Term

Definition

ACL Type

Type of access list (IP, IPv6, or MAC).

ACL ID

Access List name for a MAC or IPv6 access list or the numeric identifier for an IP access list.

Sequence Number An optional sequence number may be specified to indicate the order of this access list relative

to other access lists already assigned to this interface and direction. A lower number indicates

higher precedence order. If a sequence number is already in use for this interface and

direction, the specified access list replaces the currently attached access list using that

sequence number. If the sequence number is not specified by the user, a sequence number

that is one greater than the highest sequence number currently in use for this interface and

direction is used. Valid range is (1 to 4294967295).

Term

Definition

See also other documents in the category Kontron Hardware: