On 02/06/13 22:51, Brian E Carpenter wrote:
On 03/06/2013 08:49, Darren Pilgrim wrote:
...
I'm not sure about other switches, but for the Catalyst 3750/3750G, it
means some quirks with IPv6 ACLs. The 3750/3750D can do ACLs on full
/128's, but only if the lower 64 bits are EUI64.
Huh? How can it possibly know that? (see draft-ietf-6man-ug)
It doesn't know that; it just ignores those bits, so unless the *are*
EUI-64, your ACLs might mis-match. It uses those 16 bits for the port.
This is an issue on some higher-end platforms too (6500) but the ACL
match mode is selectable there (google "ipv6 ACL compression").
