22 permit | deny(ipv6 standard), 23 permit | deny(mac extended), Permit – PLANET XGS3-24040 User Manual

Page 743: Deny, Standard, Mac extended

Commands for Security Function Chapter 2 Commands for 802.1x

41-15

Function: Create an extended nomenclature IPv6 access control rule for specific IPv6 protocol.

Parameter: is the source IPv6 address;<sPrefixlen> is the length of the IPv6 address

prefix, the range is 1～128; is the destination IPv6 address;<dPrefixlen> is the length of

the IPv6 address prefix, the range is 1 ～ 128;<igmp-type>,type of the IGMP;,icmp

type;,icmp protocol number;,IPv6 priority ,the range is 0～63; ,value

of the flow label, the range is 0～1048575;syn,ack,urg,rst,fin,psh,tcp label position; , source

port number, the range is 0～65535; , the down boundary of source port; , the

up boundary of source port;

, destination port number, the range is 0～65535; , the

down boundary of destination port; , the up boundary of destination port. ,

the IPv6 next-header. , time range name.

Command Mode: IPv6 nomenclature extended access control list mode

Default: No access control list configured.

Example: Create an extended access control list named udpFlow, denying the igmp packets while

allowing udp packets with destination address 2001:1:2:3::1 and destination port 32.

Switch(config)#ipv6 access-list extended udpFlow

Switch(Config-IPv6-Ext-Nacl-udpFlow)#deny igmp any any-destination

Switch(Config-IPv6-Ext-Nacl-udpFlow)#permit udp any-source host-destination 2001:1:2:3::1

dPort 32

41.22 permit | deny(ipv6 standard)

Command: [no] {deny | permit} {{/sPrefixlen>} | any-source | {host-source

}}

Function: Create a standard nomenclature IPv6 access control rule; the “no” form of this command

deletes the nomenclature standard IPv6 access control rule.

Parameter: is the prefix of the source IPv6 address,<sPrefixlen> is the length of the

IPv6 address prefix, the valid range is 1~128. is the source IPv6 address.

Command Mode: Standard IPv6 nomenclature access list mode

Default: No access list configured by default.

Usage Guide:

Example: Permit packets with source address of 2001:1:2:3::1/64 while denying those with source

address of 2001:1:2:3::1/48.

Switch(config)#ipv6 access-list standard ipv6Flow

Switch(Config-IPv6-Std-Nacl-ipv6Flow)# permit 2001:1:2:3::1/64

Switch(Config-IPv6-Std-Nacl-ipv6Flow)# deny 2001:1:2:3::1/48

41.23 permit | deny(mac extended)

Command:

[no]{deny|permit}

{any-source-mac|{host-source-mac

}|{

Pages: 1 … 741 742 743 744 745 … 869

wrong Brand

wrong Model

non readable

See also other documents in the category PLANET Routers:

FNSW-1601 (2 pages)

FNSW-1601 (2 pages)

FGSW-1816HPS (2 pages)

FGSW-1816HPS (110 pages)

FGSW-1816HPS (105 pages)

WGSD-10020HP (16 pages)

GS-5220-16S8CR (432 pages)

FGSD-1022P (12 pages)

FGSD-1022P (226 pages)

FGSD-910P (28 pages)

FGSW-1602RS (30 pages)

FGSW-2402S (39 pages)

FGSW-2620PVS (50 pages)

FGSW-2624SF (2 pages)

FGSW-2620VM (213 pages)

FGSW-2620VM (2 pages)

FGSW-2624SF (2 pages)

FGSW-2620VM (96 pages)

FGSW-2620 (2 pages)

FGSW-2620CS (2 pages)

FGSW-2620CS (80 pages)

FGSW-2620CS (2 pages)

FGSW-2620CS (81 pages)

FGSW-2840 (2 pages)

FGSW-4840S (263 pages)

FGSW-4840S (2 pages)

FGSW-4840S (38 pages)

FNSW-1600P (20 pages)

FNSW-1600S (33 pages)

FNSW-2400PS (2 pages)

FNSW-2400PS (70 pages)

FNSW-1602S (43 pages)

FNSW-2402S (39 pages)

FNSW-4800 (2 pages)

FNSW-2401CS (38 pages)

FSD-1604 (12 pages)

FSD-2405 (18 pages)

FSD-1606 (2 pages)

FSD-803 (2 pages)

FSD-803 (2 pages)

FSD-504HP (2 pages)

FSD-805ST (20 pages)

FSD-804P (21 pages)

FSD-808P (20 pages)

FSD-808P (22 pages)