Creating an IPv6 Firewall Policy
The following procedure describes how to create an IPv6firewallFirewall is a network security system used for preventing unauthorized access to or from a private network.policy.
1.In thenode hierarchy, navigate to thetab.
2.Clickto create a new policy.
3.Enterfor the.
4.To configure afirewallFirewall is a network security system used for preventing unauthorized access to or from a private network.policy, selectfor.
5.Click.
6.Select thepolicy.
7.Clickin therules table.
8.Selectoption in thefield and click.
9.Selectfrom thedrop-down list.
10.Selectfrom thedrop-down list and enter the following values:
a.For, enter.
b。For, enteras the prefix-length.
c.For中,选择from the drop-down list.
d.For中,选择from the drop-down list.
e.Click.
11.Click添加规则,允许HTTPSHypertext Transfer Protocol Secure. HTTPS is a variant of the HTTP that adds a layer of security on the data in transit through a secure socket layer or transport layer security protocol connection.traffic.
12.Selectoption in thefield and click.
a.Undercolumn, select
b。Selectfrom thedrop-down list.
c.For, enter.
d.For, enteras the prefix-length.
e.Under中,选择from the drop-down list.
f.Selectfrom the scrolling list.
g.Click.
Rules can be reordered using the up and down arrow buttons provided for each rule. |
13.Click.
14.In thewindow, select the check box and click.
The followingCLICommand-Line Interface. A console interface with a command line shell that allows users to execute text input as commands and convert these commands to appropriate functions.commands create an IPv6firewallFirewall is a network security system used for preventing unauthorized access to or from a private network.policy.
(host) [md] (config)#ip access-list session ipv6-web-only
(host) [md] (config-submode)#ipv6 network 2002:d81f:f9f0:1000::/64 any svc-http permit
(host) [md] (config-submode)#ipv6 network 2002:d81f:f9f0:1000::/64 any svc-https permit
