2
59
Example
This example defines an ACL by the name of server and enters a rule (ACE) for tcp
packets.
switchxxxxxx(config)# ipv6 access-list server
switchxxxxxx(config-ipv6-al)# permit tcp 3001::2/64 any any 80
2.6
deny ( IPv6 )
Use the deny command in Ipv6 Access-list Configuration mode to set permit
conditions (ACEs) for IPv6 ACLs. Use the no form of the command to remove the
access control entry.
Syntax
protocol
deny
{any | {
priority]
[ace-priority
time-range-name
] [disable-port
source-prefix
deny icmp {any | {
{any|
icmp-type
} {any|
i cmp-code
number
] [time-range
source-prefix
deny tcp {any | {
destination-prefix
length
/
priority
number
][dscp
time-range-name
] [disable-port | l og-input]
source-prefix
deny udp {any | {
destination-prefix
/
length
priority]
number
[dscp
[disable-port | l og-input]
protocol
no deny
{any | {
number
| precedence
| l og-input]
source-prefix
no deny icmp {any | {
{any|
icmp-type
} {any|
i cmp-code
time-range-name
] [disable-port | l og-input]
source-prefix
no deny tcp {any | {
destination-prefix
length
/
source-prefix
length
/
number
[dscp
| precedence
|
l og-input]
length
/
}{any |
} [ace-priority
time-range-name
] [disable-port | l og-input]
length
/
} {any |
destination-port
} {any|
number
| precedence
length
/
}} {any |
} {any|
destination-port
number
| precedence
source-prefix
length
/
number
] [time-range
length
/
}{any |
} [dscp
number
length
/
} {any |
destination-port
} {any|
Cisco Sx350 Ph. 2.2.5 Devices - Command Line Interface Reference Guide
destination-prefix
}{any |
number
] [time-range
destination-prefix
/
priority
][dscp
number
source-port
port-range
/
port-range
/
} [ace-priority
list-of-flags
] [match-all
source-port
port-range
/
/
port-range
}
[
ace-priority
time-range-name
] [time-range
destination-prefix
}{any |
time-range-name
] [disable-port
destination-prefix
| precedence
number
source-port
port-range
/
port-range
/
} [dscp
ACL Commands
length
/
}
length
}
| precedence
}}{any |
] [time-range
}}{any |
]
length
/
} [dscp
length
/
}
] [time-range
}}{any |
number
|