3com S7906E インストール手順

 

3-2 

Set a rule numbering 
step  

step step-value 

Optional 

The default step is 5.  

Create an IPv6 ACL 
description  

description text 

Optional 

By default, no IPv6 ACL 
description is present. 

Create a rule description   rule rule-id comment text 

Optional 

By default, no rule description 
is present. 

 

Note that: 

z 

You can only modify the existing rules of an ACL that uses the match order of config. When 

modifying a rule of such an ACL, you may choose to change just some of the settings, in which 

case the other settings remain the same. 

z 

You cannot create a rule with, or modify a rule to have, the same permit/deny statement as an 

existing rule in the ACL. 

z 

When the ACL match order is auto, a newly created rule will be inserted among the existing rules in 

the depth-first match order. Note that the IDs of the rules still remain the same. 

 

z 

You can modify the match order of an IPv6 ACL with the acl ipv6 number acl6-number [ name 

acl6-name ] match-order { auto | config } command but only when it does not contain any rules.  

z 

The rule specified in the rule comment command must have existed.  

 

# Create IPv6 ACL 2000 to permit IPv6 packets with source address 2030:5060::9050/64 to pass while 

denying IPv6 packets with source address fe80:5060::8050/96.  

<Sysname> system-view 

[Sysname] acl ipv6 number 2000 

[Sysname-acl6-basic-2000] rule permit source 2030:5060::9050/64 

[Sysname-acl6-basic-2000] rule deny source fe80:5060::8050/96 

# Verify the configuration. 

[Sysname-acl6-basic-2000] display acl ipv6 2000 

 Basic IPv6 ACL  2000, named -none-, 2 rules, 

 ACL's step is 5 

 rule 0 permit source 2030:5060::9050/64 

 rule 5 deny source FE80:5060::8050/96