C H A P T E R
35-1
Cisco Catalyst Blade Switch 3130 and 3032 for Dell Software Configuration Guide
OL-12247-04
35
Configuring IPv6 ACLs
You can filter IP Version 6 (IPv6) traffic by creating IPv6 access control lists (ACLs) and applying them
to interfaces as you would create and apply IP Version 4 (IPv4) named ACLs. You can also create and
apply input router ACLs to filter Layer 3 management traffic when the switch is running the IP services
or IP base feature set. This chapter includes information about configuring IPv6 ACLs on the switch.
Unless otherwise noted, the term
switch
refers to a standalone switch and to a switch stack.
To use IPv6, you must configure the dual IPv4 and IPv6 Switch Database Management (SDM) template
on the switch. You select the template by entering the
sdm prefer
dual-ipv4-and-ipv6
{
default
|
vlan
}
global configuration command.
For related information, see these chapters:
•
For more information about SDM templates, see
Chapter 8, “Configuring SDM Templates.”
•
For information about IPv6 on the switch, see
Chapter 39, “Configuring IPv6 Unicast Routing.”
•
For information about ACLs on the switch, see
Chapter 34, “Configuring Network Security with
Note
For complete syntax and usage information for the commands used in this chapter, see the command
reference for this release or the Cisco IOS documentation referenced in the procedures.
This chapter contains these sections:
•
Understanding IPv6 ACLs, page 35-1
•
Configuring IPv6 ACLs, page 35-3
•
Displaying IPv6 ACLs, page 35-9
Understanding IPv6 ACLs
A switch supports these IPv6 ACLs:
•
IPv6 router ACLs are supported on outbound or inbound traffic on Layer 3 interfaces, which can be
routed ports, switch virtual interfaces (SVIs), or Layer 3 EtherChannels. IPv6 router ACLs apply
only to IPv6 packets that are routed.
•
IPv6 port ACLs are supported only on inbound traffic on Layer 2 interfaces. IPv6 port ACLs are
applied to all IPv6 packets entering the interface.