Netgear M4300-24X24F (XSM4348S) - Stackable Managed Switch with 48x10G including 24x10GBASE-T and 24xSFP+ Layer 3 Guia Do Administrador
ACLs
215
Managed Switches
CLI: Configure an IPv6 ACL
1.
Create the access control list with the name ipv6-acl.
2.
Define three rules to:
•
Permit any IPv6 traffic to the destination network 2001:DB8:C0AB:AC14::/64 from the
source network 2001:DB8:C0AB:AC11::/64.
source network 2001:DB8:C0AB:AC11::/64.
•
Permit IPv6 Telnet traffic to the destination network 2001:DB8:C0AB:AC13::/64 from
the source network 2001:DB8:C0AB:AC11::/64.
the source network 2001:DB8:C0AB:AC11::/64.
•
Permit IPv6 HTTP traffic to any destination network from the source network
2001:DB8:C0AB:AC11::/64.
2001:DB8:C0AB:AC11::/64.
3.
Apply the rules to inbound traffic on port 1/0/1. Only traffic matching the criteria will be
accepted.
(Netgear Switch) (Config)# ipv6 access-list ipv6-acl
(Netgear Switch) (Config-ipv6-acl)# permit ipv6 2001:DB8:C0AB:AC11::/64
2001:DB8:C0AB:AC14::/64
(Netgear Switch) (Config-ipv6-acl)# permit tcp 2001:DB8:C0AB:AC11::/64
2001:DB8:C0AB:AC13::/64 eq telnet
2001:DB8:C0AB:AC13::/64 eq telnet
(Netgear Switch) (Config-ipv6-acl)# permit tcp 2001:DB8:C0AB:AC11::/64 any eq http
(Netgear Switch) (Config)#interface 1/0/1
(Netgear Switch) (Interface 1/0/1)# ipv6 traffic-filter ipv6-acl in
(Netgear Switch) (Interface 1/0/1)# exit
(Netgear Switch) (Config)#exit