24-3
Cisco 10000 Series Router Software Configuration Guide
OL-2226-23
Chapter 24 Configuring IP Version 6
Limitations for IPv6
RPF strict check mode verifies that the source IP address exists in the FIB table and verifies that the
source IP address is reachable through the input port
•
Security ACLs
For IPv6, ACEs include the following new fields:
–
Flow Label
–
Presence of Routing Header
–
“Undetermined Transport”
•
QoS
QoS matching is performed only on the following subset of fields, which are common to IPv4 and
IPv6:
–
dscp/precedence
–
access group (matches only on ACE entries common to IPv4 and IPv6)
–
class
–
qos group
–
mpls
–
input if
–
l2 cos
–
discard class
The
match protocol
command now includes the
ipv6
keyword to specify this protocol as a matching
criterion. The
match ip dscp
and
match ip precedence
commands apply only to IPv4 traffic. The
match dscp
and
match precedence
commands apply to both IPv4 and IPv6 traffic.
For marking packets, the
set ip
dscp
and
set ip precedence
commands have been changed to
set
dscp
and
set
precedence
. They now apply to both IPv4 and IPv6 traffic.
•
ICMP handling and generation are performed on the route processor and are not handled in PXF
Limitations for IPv6
Not all types of IPv6 Tunneling are supported on the Cisco 10000 routers with this release. Among those
not supported are the following:
•
Automatic 6to4
•
ISATAP
•
Automatic IPv4-compatible
•
IPv6 over L2TPv3
•
6over4 (RFC 2529)
•
IPv6 in IPv6 GRE
•
IPv6 over UTI
The following security ACL features are not supported for IPv6:
•
Incremental compilation (The Cisco 10000 routers use pre-compiled ACLs.)
•
Single-step classification