Netgear M4300-28G CLI Manual Software Version 12.x - Page 984
Table 15., IPv6 ACL command parameters, icmpv6, domain, ftp-data, telnet
View all Netgear M4300-28G manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 984 highlights
M4300 Intelligent Edge Series Fully Managed Stackable Switches Table 15. IPv6 ACL command parameters Parameter Description sequence-number The sequence-number parameter specifies the sequence number for the ACL rule. Either you define the sequence number or is it is generated. If no sequence number exists for a rule, a sequence number that is 10 greater than the last sequence number in the ACL is used and the rule is placed at the end of the list. If this is the first ACL rule in the ACL, a sequence number of 10 is assigned. If the calculated sequence number exceeds the maximum sequence number value, the creation of the ACL rule fails. You cannot create a rule that duplicates an already existing one and you cannot configure a rule with a sequence number that is already used for another rule. For example, if you add new ACL rule to the ACL without specifying a sequence number, the rule is placed at the bottom of the list. By changing the sequence number, you can move the ACL rule to a different position in the ACL. {deny | permit} Specifies whether the IPv6 ACL rule permits or denies the matching traffic. every Specifies to match every packet. {protocolkey | number} Specifies the protocol to match for the IPv6 ACL rule. The current list is: icmpv6, ipv6, tcp, and udp. source-ipv6-prefix/prefix-length | any | host source-ipv6-address [eq {portkey | 0-65535}] For source-ipv6-prefix/prefix-length, specify a source IPv6 source address and prefix length to match for the IPv6 ACL rule. Specifying any implies specifying ::/0 Specifying host source-ipv6-address implies matching the specified IPv6 address. The source-ipv6-address argument must be in the form documented in RFC 2373 where the address is specified in hexadecimal using 16-bit values between colons. Note: This option is available only if the protocol is TCP or UDP. Specifies the layer 4 port match condition for the IPv6 ACL rule. A port number can be used, in the range 0-65535, or the portkey, which can be one of the following keywords: For TCP: bgp, domain, echo, ftp, ftp-data, http, smtp, telnet, www, pop2, or pop3. For UDP: domain, echo, ntp, rip, snmp, tftp, time, or who. Each of these keywords translates into its equivalent port number. When eq is specified, the IPv6 ACL rule matches only if the layer 4 port number is equal to the specified port number or portkey. Two rules are added in the hardware one with range equal to 0 to and one with range equal to Quality of Service Commands 984 CLI Command Reference Manual