NETGEAR M7100 Switch User Manual


 
Chapter 10. ACLs | 185
ProSafe M4100 and M7100 Managed Switches
Permit IPv6 Telnet traffic to the destination network 2001:DB8:C0AB:AC13::/64 from
the source network 2001:DB8:C0AB:AC11::/64.
Permit IPv6 HTTP traf
fic to any destination network from the source network
2001:DB8:C0AB:AC11::/64.
(Netgear Switch) (Config-ipv6-acl)# permit ipv6 2001:DB8:C0AB:AC11::/64
2001:DB8:C0AB:AC14::/64
(Netgear Switch) (Config-ipv6-acl)# permit tcp 2001:DB8:C0AB:AC11::/64
2001:DB8:C0AB:AC13::/64 eq telnet
(Netgear Switch) (Config-ipv6-acl)# permit tcp 2001:DB8:C0AB:AC11::/64 any eq http
3. Apply the rules to inbound traffic on port 1/0/1. Only traffic matching the criteria will be
accepted.
(Netgear Switch) (Config)#interface 1/0/1
(Netgear Switch) (Interface 1/0/1)# ipv6 traffic-filter ipv6-acl in
(Netgear Switch) (Interface 1/0/1)# exit
(Netgear Switch) (Config)#exit
4. View the configuration.
(Netgear Switch) #show ipv6 access-lists
Current number of all ACLs: 1 Maximum number of all ACLs: 100
IPv6 ACL Name Rules Direction Interface(s) VLAN(s)
--------------------- ----- --------- ------------- -------------------
ipv6-acl 3 inbound 1/0/1
(Netgear Switch) #show ipv6 access-lists ipv6-acl
ACL Name: ipv6-acl
Inbound Interface(s): 1/0/1
Rule Number: 1
Action......................................... permit
Protocol....................................... 255(ipv6)
Source IP Address.............................. 2001:DB8:C0AB:AC11::/64
Destination IP Address......................... 2001:DB8:C0AB:AC14::/64
Rule Number: 2
Action......................................... permit
Protocol....................................... 6(tcp)
Source IP Address.............................. 2001:DB8:C0AB:AC11::/64
Destination IP Address......................... 2001:DB8:C0AB:AC13::/64
Destination L4 Port Keyword.................... 23(telnet)