Hi @hussien.samer,
It’s working fine here:
R2(config)#ipv6 access-list R1_TRAFFIC
R2(config-ipv6-acl)#deny tcp any any eq telnet
R2(config-ipv6-acl)#permit any any
R2(config)#interface GigabitEthernet 2
R2(config-if)#ipv6 traffic-filter R1_TRAFFIC in
This blocks telnet traffic and permits everything else:
R1#telnet 2001:DB8:0:12::2
Trying 2001:DB8:0:12::2 ...
% Connection timed out; remote host not responding
R1#ping 2001:DB8:0:12::2
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 2001:DB8:0:12::2, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 1/1/2 ms
You can see the matches here:
R2#show access-lists
IPv6 access list R1_TRAFFIC
deny tcp any any eq telnet (8 matches) sequence 10
permit ipv6 any any (13 matches) sequence 20