Using CIDR notation to enter the IPv6 ACL prefix length

CIDR (Classless Inter-Domain Routing) notation is used to specify ACL prefix lengths. The switch compares the address bits specified by a prefix length for an SA or DA in an ACE with the corresponding address bits in a packet being filtered by the ACE. If the designated bits in the ACE and in the packet have identical settings, the addresses match.

Table 10: Examples of CIDR notation for prefix lengths

SA or DA used in an ACL with CIDR notation

Resulting prefix length defining an address match

Meaning

2530:0:a03:e102::/64

2530:0:a03:e102

The leftmost 64 bits must match. The remaining 64 bits are wildcards.

2530:0:a03:e102:215::/80

2530:0:a03:e102:215

The leftmost 80 bits must match. The remaining 48 bits are wildcards.

2530:0:a03:e102:215:60ff:fe7a:adc0/128

2530:0:a03:e102:215:60ff:fe7a:adc0

All 128 bits must match. This specifies a single host address.

2001:db8:a03:e102:0:ab4:100::/112

2001:db8:a03:e102:0:ab4:100

The leftmost 112 bits must match. The remaining 16 bits are wildcards.