HP 6200YL User Manual

Page 233

IPv6 Access Control Lists (ACLs)

Configuration Commands

5400zl

2001:db8::1:10:1

Management

Station

2001:db8::1:10:10

3500yl

2001:db8::1:30:128

Server “1”

2001:db8::1:10:3

6200yl

2001:db8::1:10:2

3500yl

2001:db8::1:20:128

Workgroup“A”

Server “2”

2001:db8::1:10:4

2001:db8::1:20:0/121

Workgroup “B”

2001:db8::1:30:0/121

Campus Intranet

Figure 8-11. Example of Controlling Workgroup Access to Servers

Continuing the example, you would use the following commands to configure
the ACL:

ProCurve(config)# ipv6 access-list Test-01

ProCurve(config-ipv6-acl)#

ProCurve(config-ipv6-acl)#permit ipv6 host 2001:db8::1:10:10 any

ProCurve(config-ipv6-acl)#deny tcp 2001:db8::1:20:0/121 host 2001:db8::1:10:3 eq

telnet log

ProCurve(config-ipv6-acl)#deny ipv6 2001:db8::1:20:0/121 host 2001:db8::1:10:4

log

ProCurve(config-ipv6-acl)#deny tcp 2001:db8::1:30:0/121 host 2001:db8::1:10:4 eq

telnet log

ProCurve(config-ipv6-acl)#deny ipv6 2001:db8::1:30:0/121 host 2001:db8::1:10:3

ProCurve(config-ipv6-acl)#deny icmp any any router-solicitation

ProCurve(config-ipv6-acl)#permit ipv6 any any

ProCurve(config-ipv6-acl)#exit

Figure 8-12. Commands To Configure an IPv6 ACL To Control Access to the Servers in Figure 8-11

8-57

This manual is related to the following products: