Yes, you can use IPv6 addresses for IP-based access restrictions. IPv6 access control lists (ACLs) are widely supported and allow you to filter traffic based on source and destination IPv6 addresses, similar to IPv4 ACLs. These ACLs can be applied to network interfaces to control which traffic is allowed or blocked, enabling you to restrict access based on specific IPv6 addresses or subnets[1][4].
In web applications, you can also implement IPv6 restrictions using programming languages like C#. For example, you can use `HttpRequest.UserHostAddress` or server variables like `HTTP_X_FORWARDED_FOR` to obtain the client's IPv6 address and enforce access restrictions accordingly[2].
When configuring IPv6 ACLs, you typically follow these steps:
1. Enable Privileged EXEC Mode: Access the device's command-line interface.
2. Enter Global Configuration Mode: Use the `configure terminal` command.
3. Define an IPv6 ACL: Use the `ipv6 access-list` command to create and name your ACL.
4. Configure Permit or Deny Conditions: Use `permit` or `deny` commands to specify which traffic is allowed or blocked based on source and destination IPv6 addresses and ports[1][4].
In environments like Oracle Cloud Infrastructure, IPv6 security rules can be applied within Virtual Cloud Networks (VCNs) to control traffic flow based on IPv6 addresses[3].
Overall, IPv6-based access restrictions are fully supported and can be implemented across various platforms and devices.
Citations:
[1] https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst1000/software/releases/15_2_7_e/configuration_guides/sec/b_1527e_security_c1000_cg/configuring_ipv6_acls.pdf
[2] https://stackoverflow.com/questions/47752788/does-the-user-login-restriction-based-on-ip-address-support-ipv6-for-web-applica
[3] https://docs.oracle.com/en-us/iaas/Content/Network/Concepts/ipv6.htm
[4] https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst2960l/software/15-2_7_e/configuration_guide/b_1527e_consolidated_2960l_cg/m_sec_ipv6_acls_2960l.pdf
[5] https://www.cisco.com/c/en/us/support/docs/smb/switches/cisco-350-series-managed-switches/smb3050-configure-ipv6-based-access-control-list-acl-and-access-cont.html
[6] https://askubuntu.com/questions/398672/do-i-also-need-to-set-up-another-iptables-rules-for-ipv6-if-i-just-used-iptables
[7] https://forum.mikrotik.com/viewtopic.php?p=1116702
[8] https://serverfault.com/questions/258466/how-are-ip-based-rules-eg-bans-filters-affected-once-ipv6-becomes-the-standar