Brocade ICX 6650 Security Configuration Guide 133
53-1002601-01
Creating an IPv6 ACL
Syntax: permit | deny protocol
ipv6-source-prefix/prefix-length | any | host source-ipv6_address
ipv6-destination-prefix/prefix-length | any | host ipv6-destination-address
[ipv6-operator [value]]
[802.1p-priority-matching number]
[dscp-marking number 802.1p-priority-marking number internal-priority-marking number]
| [dscp-marking dscp-value dscp-cos-mapping]
For ICMP
Syntax: [no] ipv6 access-list ACL name
Syntax: permit | deny icmp ipv6-source-prefix/prefix-length | any | host source-ipv6_address
ipv6-destination-prefix/prefix-length | any | host ipv6-destination-address
[ipv6-operator [value]]
[ [icmp-type][icmp-code] ] | [icmp-message]
[dscp-marking number]
For TCP
Syntax: [no] ipv6 access-list ACL-name
Syntax: permit | deny tcp
ipv6-source-prefix/prefix-length | any | host source-ipv6_address [tcp-udp-operator
[source-port-number]]
ipv6-destination-prefix/prefix-length | any | host ipv6-destination-address
[tcp-udp-operator [destination-port- number]]
[ipv6-operator [value]]
[802.1p-priority-matching number]
[dscp-marking number 802.1p-priority-marking number internal-priority-marking number]
For UDP
Syntax: [no] ipv6 access-list ACL-name
Syntax: permit | deny udp
ipv6-source-prefix/prefix-length | any | host source-ipv6_address [tcp-udp-operator
[source port number]]
ipv6-destination-prefix/prefix-length | any | host ipv6-destination-address
[tcp-udp-operator [destination port number]]
[ipv6-operator [value]]
[802.1p-priority-matching number]
[dscp-marking number 802.1p-priority-marking number internal-priority-marking number]