show ipv6 access-list
This command displays the rules for configured IPv6 ACLs.
Syntax
show ip access-list
{
standard
|
extended
} [acl_name]
• standard – Specifies a standard IPv6 ACL.
• extended – Specifies an extended IPv6 ACL.
• acl_name – Name of the ACL. (Maximum length: 16 characters)
Command Mode
Privileged Exec
Example
Console#show ipv6 access-list standard
IPv6 standard access-list david:
permit host 2009:DB9:2229::79
permit 2009:DB9:2229:5::/64
Console#
Related Commands
permit, deny (26-8)
ipv6 access-group (26-11)
ipv6 access-group
This command binds a port to an IPv6 ACL. Use the no form to remove the port.
Syntax
[no] ipv6 access-group acl_name in
• acl_name – Name of the ACL. (Maximum length: 16 characters)
• in – Indicates that this list applies to ingress packets.
Default Setting
None
Command Mode
Interface Configuration (Ethernet)
Command Usage
• A port can only be bound to one ACL.
• If a port is already bound to an ACL and you bind it to a different ACL, the
switch will replace the old binding with the new one.
• IPv6 ACLs can only be applied to ingress packets.
Example
Console(config)#int eth 1/2
Console(config-if)#ipv6 access-group standard david in
Console(config-if)#
26-11
IPv6 ACLs
26