What’s new in FortiOS Version 4.0 MR1 Dynamic routing for IPv6 traffic
FortiGate Version 4.0 MR1 Administration Guide
01-410-89802-20090903 51
http://docs.fortinet.com/ • Feedback
router access-list6
Use this command to add, edit, or delete access lists for IPv6 traffic. Access lists are filters
used by FortiGate unit routing processes. For an access list to take effect, it must be
called by a FortiGate unit routing process (for example, a process that supports RIPng or
OSPF).
Syntax
config router access-list6
edit <access_list_name>
set comments <string>
config rule
edit <access_list_id>
set action {deny | permit}
set exact-match {enable | disable}
set prefix6 { <prefix_ipv6mask> | any }
end
end
backdoor
{enable | disable}
Enable or disable the route as a backdoor,
which causes an administrative distance of 200
to be assigned to the route. Backdoor routes are
not advertised to EBGP peers.
disable
prefix6 <address_ipv6mask> Enter the IP address and netmask that identifies
the BGP network to advertise.
::/0
route-map
<routemap-name_str>
Specify the name of the route-map that will be
used to modify the attributes of the route before
it is advertised. You must create the route-map
before it can be selected here.
Null
config redistribute6 Variables are the same as for config redistribute
Variable Description Default
Note: The action and prefix keywords are required. The exact-match keyword is
optional.
Variable Description Default
edit <access_list_name>
Enter a name for the access list. An access list and
a prefix list cannot have the same name.
No default.
comments <string> Enter a descriptive comment. The max length is
127 characters.
No default.
config rule Variables
edit <access_list_id>
Enter an entry number for the rule. The number
must be an integer.
No default.
action {deny | permit} Set the action to take for this prefix. permit
exact-match
{enable | disable}
By default, access list rules are matched on the
prefix or any more specific prefix. Enable exact-
match to match only the configured prefix.
disable
prefix6 {
<prefix_ipv6mask> | any }
Enter the prefix for this access list rule, either:
• Type the IP address and netmask.
•Type any to match any prefix.
any
To Next Page
Loading...
Need help?
General