HP 6125XLG R2306-HP 6125XLG Blade Switch ACL and QoS Command Reference - Page 33

Table 15 ICMPv6 message names supported in IPv6 advanced ACL rules ICMPv6 message name echo-reply echo-request err-Header-field frag-time-exceeded hop-limit-exceeded host-admin-prohib host-unreachable neighbor-advertisement neighbor-solicitation network-unreachable packet-too-big port-unreachable redirect router-advertisement router-solicitation unknown-ipv6-opt unknown-next-hdr ICMPv6 message type 129 128 4 3 3 1 1 136 135 1 2 1 137 134 133 4 4 ICMPv6 message code 0 0 0 1 0 1 3 0 0 0 0 4 0 0 0 2 1 Usage guidelines If an ACL is for QoS traffic classification: • Do not specify the vpn-instance or fragment keyword. • Do not specify neq for the operator argument. • Do not specify the routing, hop-by-hop, or flow-label keyword, nor set the protocol argument to 0, 43, 44, 51, or 60, if the ACL is for outbound QoS traffic classification. If an ACL is for packet filtering: • Do not specify the vpn-instance, routing, hop-by-hop, fragment, or flow-label keyword. • Do not specify neq for the operator argument. • Do not set the protocol argument to 0, 43, 44, 51, or 60. If an ACL is to match information in the IPv6 packet payload, it cannot match the packet with more than two extension headers or with the Encapsulating Security Payload Header. Within an ACL, the permit or deny statement of each rule must be unique. If the ACL rule you are creating or editing has the same deny or permit statement as another rule in the ACL, your creation or editing attempt fails. You can edit ACL rules only when the match order is config. If no optional keywords are provided in the undo rule command, you delete the entire rule. If optional keywords or arguments are provided, you delete the specified attributes. To view rules in an ACL and their rule IDs, use the display acl ipv6 all command. 28