BigIron RX Series Configuration Guide 119753-1002253-01Chapter47IPv6 Access Control Lists (ACLs)IPv6 ACLsBrocade supports IPv6 Access Control Lists (ACLs), which you can use for traffic filtering. You canconfigure up to 100 IPv6 ACLs.An IPv6 ACL is composed of one or more conditional statements that pose an action (permit ordeny) if a packet matches a specified source or destination prefix. There can be up to 1024statements per device.In ACLs with multiple statements, you can specify a priority for each statement.The specifiedpriority determines the order in which the statement appears in the ACL. The last statement in eachIPv6 ACL is an implicit deny statement for all packets that do not match the previous statements inthe ACL.You can configure an IPv6 ACL on a global basis, then apply it to the incoming IPv6 packets onspecified interfaces. You can apply only one IPv6 ACL to an interface’s incoming traffic. When aninterface sends or receives an IPv6 packet, it applies the statements within the ACL in their order ofappearance to the packet. As soon as a match occurs, the BigIron RX takes the specified action(permit or deny the packet) and stops further comparison for that packet. Both, IPv4 and IPv6 ACLscan co-exist on the same interface.NOTEIPv6 ACLs are supported on inbound traffic and are implemented in hardware, making it possiblefor the BigIron RX to filter traffic at line-rate speed on 10 Gigabit interfaces.Brocade’s IPv6 ACLs enable traffic filtering based on the following information:• IPv6 protocol• Source IPv6 address• Destination IPv6 address• IPv6 message type• Source TCP or UDP port (if the IPv6 protocol is TCP or UDP)• Destination TCP or UDP port (if the IPv6 protocol is TCP or UDP)The IPv6 protocol can be one of the following well-known names or any IPv6 protocol number from0 – 255:• Authentication Header (AHP)• Encapsulating Security Payload (ESP)• Internet Control Message Protocol (ICMP)• Internet Protocol Version 6 (IPv6)• Stream Control Transmission Protocol (SCTP)• Transmission Control Protocol (TCP)• User Datagram Protocol (UDP)