Cisco does not support IPv6 Protocol numbers about capirca HOT 4 CLOSED

Further testing shows I am incorrect -- IOS correctly recognizes protocols 6 
and 17, converting them to TCP and UDP:

LAB6500#conf t
Enter configuration commands, one per line.  End with CNTL/Z.
LAB6500(config)#ipv6 access-list testing
LAB6500(config-ipv6-acl)#permit 6 any any
LAB6500#show ipv6 access-list testing
IPv6 access list testing
    permit tcp any any sequence 10

So it appears just ICMP needs to not be converted, and left as a string

This seems like a bug in the Cisco IOS code rather than in capirca, as the 
cisco docs indicate a numeric protocol is acceptable.

I tested this and my routers seems to accept the ACL onto the interface, 
although I didn't test against live traffic to see if the actions work as 
expected.

I'll take a close look at this soon.

Brandon: To filter ICMP messages in inet6 filters one must use icmpv6 in term 
definition:

term permit-icmp {
    comment:: "Permit all ICMP traffic"
    protocol:: icmpv6
    action:: accept
}

This will result in the following output:

permit 58 any  any

58 is a protocol number for icmpv6 which Cisco also properly recognizes (tested 
on C4900M, IOS version 12.2(54)SG).

This info is based on the latest SVN version of capirca. It is possible that 
icmpv6 handling for Cisco was indeed broken when this bug was opened.

[email protected] is correct.

use protocol icmpv6 (protocol 58) instead of icmp (protocol 1) when working 
with IPv6 ICMP.