Buy or Renew
Buy or Renew
COMING SOON: Umbrella and Secure Access release notes are coming to Cisco Community. The community will be in read-only August 16 – 19. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
315
Views
1
Helpful
4
Replies

C9300 turn off IPv6

Go to solution
joseph.duffy
Level 1
Level 1

‎07-08-2024 12:11 PM

I know that this will sound odd, but how do I turn off all IPv6 from running in a C9300 running IOS-XE 17.9.5

I've found many articles and STIG's that accomplish this via complicated ACL's but I would like to think there would be an easier way

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Harold Ritter
Cisco Employee
Cisco Employee

‎07-08-2024 12:21 PM

Hi @joseph.duffy ,

IPv6 routing is not enabled by default in IOS-XE.

You need to explicitly turn it on with the following command: ipv6 unicast-routing

What you might be referring to though, is the fact that some IPv6 traffic might traverse the C9300 encapsulated in IPv4 packets. As you mentioned, one way to make sure that this does not happen is to build an ACL that protects you against it.

Regards, 

Harold Ritter
Sr Technical Leader
CCIE 4168 (R&S, SP)
harold@cisco.com
México móvil: +52 1 55 8312 4915
Cisco México
Paseo de la Reforma 222
Piso 19
Cuauhtémoc, Juárez
Ciudad de México, 06600
México

View solution in original post

0 Helpful
4 Replies 4

Go to solution
MHM Cisco World
VIP
VIP

‎07-08-2024 12:19 PM

I think by Use 

Interface range 

No ipv6 enable

This will disable ipv6 in all interfaces

MHM

0 Helpful

Go to solution
joseph.duffy
Level 1
Level 1
In response to MHM Cisco World

‎07-09-2024 01:47 PM

MHM,

Thanks, but it's not an option on my interfaces under the 17.9.5 version.   Looks like I'll have to implement the larger grouping of ipv6 access-list method

- Joe 

0 Helpful

Go to solution
MHM Cisco World
VIP
VIP
In response to joseph.duffy

‎07-09-2024 02:02 PM

This command run only in l3 port not under l2 port' this SW so I think all port is l2' you can convert it to l3 via no switchport the  add no ipv6 enable.

Goodluck 

MHM

Go to solution
Harold Ritter
Cisco Employee
Cisco Employee

‎07-08-2024 12:21 PM

Hi @joseph.duffy ,

IPv6 routing is not enabled by default in IOS-XE.

You need to explicitly turn it on with the following command: ipv6 unicast-routing

What you might be referring to though, is the fact that some IPv6 traffic might traverse the C9300 encapsulated in IPv4 packets. As you mentioned, one way to make sure that this does not happen is to build an ACL that protects you against it.

Regards, 

Harold Ritter
Sr Technical Leader
CCIE 4168 (R&S, SP)
harold@cisco.com
México móvil: +52 1 55 8312 4915
Cisco México
Paseo de la Reforma 222
Piso 19
Cuauhtémoc, Juárez
Ciudad de México, 06600
México
0 Helpful
Customers Also Viewed These Support Documents