ACLv6 Config

Procedure

• Query an ACLv6.
  1. Click Configuration in the function area. Choose Security Services > ACL Config > ACLv6 Config to open the ACLv6 Config page.
  2. Set the search criteria.
  3. Click to display all matching records.
• Create an ACLv6.
  1. Click Configuration in the function area. Choose Security Services > ACL Config > ACLv6 Config to open the ACLv6 Config page.
  2. Click Create to open the Create ACLv6 page, as shown in Figure 1.
     Figure 1 Create ACLv6
     
     

     Table 1 describes the parameters on the page.

     Table 1 Create ACLv6

     Parameter		Description
     ACL name		Indicates the name of an ACL. The ACL name must be unique. NOTE: The value is a string starting with a letter, without spaces. Either an ACL number or an ACL name is required to identify an ACL. When you modify an ACL, the ACL name cannot be changed.
     ACL number		Indicates the number of an ACL. It identifies an ACL. The value is an integer that ranges from 3000 to 3999. NOTE: When you modify an ACL, the ACL number cannot be changed. Either an ACL number or an ACL name is required to identify an ACL.

  3. Click OK.
• Delete an ACLv6.
  1. Click Configuration in the function area. Choose Security Services > ACL Config > ACLv6 Config to open the ACLv6 Config page.
  2. Select an ACL and click Delete. If the ACL contains rules, the system prompts you that the rules in the ACL will be deleted and asks you whether to delete the ACL.
  3. Click OK. If the operation succeeds, the system returns to the ACLv6 Config page; otherwise, an error message is displayed.
• Add rules.
  1. Click Configuration in the function area. Choose Security Services > ACL Config > ACLv6 Config to open the ACLv6 Config page.
  2. Select an ACL and click Add Rule.

     Figure 2 shows the Add Rule page.

     Figure 2 Add Rule
     
     

     Table 2 describes the parameters for adding rules.

     Table 2 Add Rule

     Parameter		Description
     Action		Indicates whether to permit or deny packets. The default action is permit.
     Protocol type		Indicates the type of the protocol. It is mandatory. The protocol types include: GRE ICMPv6 NOTE: The following text boxes are valid only when the type is set to ICMPv6: IPv6 OSPF TCP UDP Customized type NOTE: The text box is valid only when the protocol type is customized.
     Match IP	Source IPv6 address/prefix length	Indicates the source IPv6 address length and prefix length.
     	Destination IPv6 address/prefix length	Indicates the destination IPv6 address length and prefix length.
     Matching Interface	Source port number	This parameter is valid only when the protocol type is TCP or UDP. If this parameter is not specified, TCP or UDP packets with any source port are matched.
     	Dest port number	This parameter is valid only when the protocol type is TCP or UDP. If this parameter is not specified, TCP or UDP packets with any destination port are matched.
     Set Time	Time range	Indicates the time range when the ACL takes effect. NOTE: The time range name is displayed on the configuration result page.

  3. Click OK.
• Modify a rule.
  1. Click Configuration in the function area. Choose Security Services > ACL Config > ACLv6 Config to open the ACLv6 Config page.
  2. Select an ACL and click to expand the ACL rules.
  3. Click of a rule to modify the rule. Table 2 describes the parameters on the page.
  

  Click and to change the order of the rule, and click Apply to make the new order take effect.

• Delete a rule.
  1. Click Configuration in the function area. Choose Security Services > ACL Config > ACLv6 Config to open the ACLv6 Config page.
  2. Select an ACL and click to expand the ACL rules.
  3. Click of a rule to delete the rule. In the dialog box that is displayed, click OK.