ProSafe M4100 and M7100 Managed Switches

Permit IPv6 Telnet traffic to the destination network 2001:DB8:C0AB:AC13::/64 from the source network 2001:DB8:C0AB:AC11::/64.

Permit IPv6 HTTP traffic to any destination network from the source network 2001:DB8:C0AB:AC11::/64.

(Netgear Switch) (Config-ipv6-acl)# permit ipv6 2001:DB8:C0AB:AC11::/64 2001:DB8:C0AB:AC14::/64

(Netgear Switch) (Config-ipv6-acl)# permit tcp 2001:DB8:C0AB:AC11::/64 2001:DB8:C0AB:AC13::/64 eq telnet

(Netgear Switch) (Config-ipv6-acl)# permit tcp 2001:DB8:C0AB:AC11::/64 any eq http

3.Apply the rules to inbound traffic on port 1/0/1. Only traffic matching the criteria will be accepted.

(Netgear Switch) (Config)#interface 1/0/1

(Netgear Switch) (Interface 1/0/1)# ipv6 traffic-filter ipv6-acl in (Netgear Switch) (Interface 1/0/1)# exit

(Netgear Switch) (Config)#exit

4.View the configuration.

(Netgear Switch) #show ipv6 access-lists

 

 

Current number of all ACLs: 1

Maximum number of all ACLs: 100

IPv6 ACL Name

Rules

Direction

Interface(s)

VLAN(s)

---------------------

-----

---------

-------------

-------------------

ipv6-acl

3

inbound

1/0/1

 

(Netgear Switch) #show ipv6 access-lists ipv6-acl

 

ACL Name: ipv6-acl

 

 

 

 

Inbound Interface(s): 1/0/1

 

 

 

Rule Number: 1

 

 

 

 

Action

 

permit

 

Protocol

 

255(ipv6)

 

Source IP Address

 

2001:DB8:C0AB:AC11::/64

Destination IP Address

 

2001:DB8:C0AB:AC14::/64

Rule Number: 2

 

 

 

 

Action

 

permit

 

Protocol

 

6(tcp)

 

Source IP Address

 

2001:DB8:C0AB:AC11::/64

Destination IP Address

 

2001:DB8:C0AB:AC13::/64

Destination L4 Port Keyword

23(telnet)

 

Chapter 10. ACLs 185

Page 185
Image 185
NETGEAR M4100, M7100 manual Netgear Switch #show ipv6 access-lists