BigIron RX Series Configuration Guide 118753-1001986-01Adding a comment to an IPv6 ACL entry 47BigIron RX(config)# ipv6 access-list fdryBigIron RX (config-ipv6-access-list fdry)# permit tcp any any match-all +ack +synBigIron RX(config-ipv6-access-list fdry)# permit tcp any any match-any -urg +syn-pshBigIron RX (config-ipv6-access-list fdryl)# endAdding a comment to an IPv6 ACL entryYou can optionally add a comment to describe entries in an IPv6 ACL. The comment appears in theoutput of show commands that display ACL information.You can add a comment by entering the remark command immediately preceding an ACL entry, orspecify the ACL entry to which the comment applies.For example, to enter comments for preceding an ACL entry, enter commands such as thefollowing.BigIron RX(config)#ipv6 access-list rtrBigIron RX(config-ipv6-access-list rtr)# remark This entry permits ipv6 packetsfrom 3002::2 to any destinationBigIron RX(config-ipv6-access-list rtr)# permit ipv6 host 3000::2 anyBigIron RX(config-ipv6-access-list rtr)# remark This entry denies udp packets fromany source to any destinationBigIron RX(config-ipv6-access-list rtr)# deny udp any anyBigIron RX(config-ipv6-access-list rtr)# remark This entry denies IPv6 packetsfrom any source to any destinationBigIron RX(config-ipv6-access-list rtr)# deny ipv6 any anyBigIron RX(config-ipv6-access-list rtr)# write memorySyntax: remark The can be up to 256 characters in length.To apply a comment to a specific ACL entry, specify the ACL’s entry number with the remark-entrysequence command. Use the show ipv6 access-list command to list ACL entry number. Entercommands such as the following :Syntax: remark-entry sequence The is the line number assigned to the ACL entry. For a list of ACL entrynumbers, use the show ipv6 access-list command.The can be up to 256 characters in length. The comment must be enteredseparately from the actual ACL entry; that is, you cannot enter the ACL entry and the ACL commentwith the same command.You can use the show running-config or show ipv6 access-list commands to display IPv6 ACLs andcomments.The following shows the comment text for the ACL named "rtr" in a show running-config display.BigIron RX(config)# ipv6 access-list netwBigIron RX(config-ipv6-access-list netw) remark-entry sequence 10 This entrypermits ipv6 packets from 3000::2 to any destinationBigIron RX(config-ipv6-access-list netw)# remark-entry sequence 20 This entrydenies UDP packets from any source to any destinationBigIron RX(config-ipv6-access-list netw)# remark-entry sequence 30 This entrydenies IPv6 packets from any source to any destination