Technical data
ServerIron ADX NAT64 Configuration Guide 87
53-1002288-02
ACL overview
5
DRAFT: BROCADE CONFIDENTIAL
For IPv6 and Supported Protocols Other than ICMP, TCP, or UDP
Syntax: [no] ipv6 access-list <acl-name>
Syntax: permit | deny <protocol>
<ipv6-source-prefix/prefix-length> | any | host <source-ipv6_address>
<ipv6-destination-prefix/prefix-length> | any | host <ipv6-destination-address>
[ipv6-operator [<value>]] [log]
For ICMP
Syntax: [no] ipv6 access-list <acl-name>
Syntax: permit | deny icmp <ipv6-source-prefix/prefix-length> | any | host
<source-ipv6_address>
<ipv6-destination-prefix/prefix-length> | any | host <ipv6-destination-address>
[ipv6-operator [<value>]]
[ [<icmp-type>][<icmp-code>] ] | [<icmp-message>] [log]
For TCP
Syntax: [no] ipv6 access-list <acl-name>
Syntax: permit | deny <tcp>
<ipv6-source-prefix/prefix-length> | any | host <source-ipv6_address> [tcp-udp-operator
[source-port-number]]
<ipv6-destination-prefix/prefix-length> | any | host <ipv6-destination-address>
[tcp-udp-operator [destination-port- number]]
[ipv6-operator [<value>]] [log]
For UDP
Syntax: [no] ipv6 access-list <acl-name>
Syntax: permit | deny <udp>
<ipv6-source-prefix/prefix-length> | any | host <source-ipv6_address> [tcp-udp-operator
[source port number]]
<ipv6-destination-prefix/prefix-length> | any | host <ipv6-destination-address>
[tcp-udp-operator [destination port number]]
[ipv6-operator [<value>]] [log]
TABLE 13 Syntax Descriptions
Arguments... Description...
ipv6 access-list <acl-name> Enables the IPv6 configuration level and defines the name of the IPv6 ACL.
The <acl-name> can contain up to 199 characters and numbers, but
cannot begin with a number and cannot contain any spaces or quotation
marks.
permit The ACL will permit (forward) packets that match a policy in the access list.
deny The ACL will deny (drop) packets that match a policy in the access list.
icmp Indicates the you are filtering ICMP packets.