DELL PC6224F User Manual
372
IPv6 Access List Commands
{deny | permit}
This command creates a new rule for the current IPv6 access list. Each rule is
appended to the list of configured rules for the list.
A rule may either deny or permit traffic according to the specified
A rule may either deny or permit traffic according to the specified
classification fields. At a minimum, either the 'every' keyword or the protocol,
source address, and destination address values must be specified. The source
and destination IPv6 address fields may be specified using the keyword 'any'
to indicate a match on any value in that field. The remaining command
parameters are all optional, but the most frequently used parameters appear
in the same relative order as shown in the command format.
The assign-queue parameter allows specification of a particular hardware
The assign-queue parameter allows specification of a particular hardware
queue for handling traffic that matches this rule. The assign-queue parameter
is valid only for a permit rule.
Syntax
{permit | deny} {every | {{icmp | igmp | ipv6 | tcp | udp |
number} {any
|
source ipv6 prefix/prefix length} [eq {portkey | portvalue}] {any |
destination ipv6 prefix/prefix length} [eq {portkey | portvalue}] [flow-label
value] [dscp dscp]}} [log] [assign-queue queue-id] [{mirror | redirect}
interface]
• deny | permit — Specifies whether the IP ACL rule permits or denies an
action.
•
every — Allows all protocols.
•
number — Standard protocol number or protocol keywords icmp, igmp,
ipv6, tcp, udp.
•
source ipv6 prefix — IPv6 prefix in IPv6 global address format.
•
prefix-length — IPv6 prefix length value.
• eq — Equal. Refers to the Layer 4 port number being used as a match
criteria. The first reference is source match criteria, the second is
destination match criteria.
•
portkey — Or you can specify the portkey, which can be one of the
following keywords:
domain, echo, efts, ftpdata, http, smtp, snmp, telnet,
tftp, and www.