ACL Configuration on IPv6

ACL (Access Control List) Configuration on IPv6

Hi ! everyone today we are going to setup ACL configuration lab based on IPv6. These are the procedure to do step by step process given below by screenshots in detail.

Step 1: First we should arrange our network topology 

Step 2: Assign IP addresses for both PCs, FTP server and Web server

 PC0

 PC1

FTP Server

 Web Server

Step 3: Configure IPv6 on Router0

By configuration on Router0 with PCs, Web server and FTP server we can see the green color which is the changed state to up as shown below.

Step 4: Now we have to configure name based extended ACL on Router0

Router(config)#ipv6 access-list cisco
Router(config-ipv6-acl)#deny tcp host 2000::2 host 2001::3 eq 80
Router(config-ipv6-acl)#permit tcp host 2000::2 host 2001::2 eq 21

Note: Block Web Server for host 2000::2/64 but allow FTP Server.

Router(config-ipv6-acl)#permit tcp host 2000::3 host 2001::3 eq 80

Router(config-ipv6-acl)#deny tcp host 2000::3 host 2001::2 eq 21

Router(config-ipv6-acl)#exit

Note: Block FTP Server for host 2000::3/64 but allow Web Server.

Step 5: We should tell the Router interface about ACL name you have created above

Router(config)#interface FastEthernet0/0
Router(config-if)#ipv6 traffic-filter cisco in
Router(config-if)#exit

Step 6: We can check our configuration on host 2000::2/64 and 2000::3/64

We must be able to access FTP server but can’t access WEB server

Secondly we must be able to access Web server but can't FTP server.

Therefore, we have completed our lab session on ACL configuration on IPv6 in the Cisco Packet tracer v 7.0.