1-11
Parameters Function Description
{ ack ack-value | fin
fin-value | psh
psh-value | rst
rst-value | syn
syn-value | urg
urg-value } *
Specifies one or more
TCP flags
Parameters specific to TCP.
The value for each argument can be 0 or 1.
The TCP flags in one rule are ANDed.
established
Specifies the TCP flags
ACK and RST
Parameter specific to TCP.
Setting the protocol argument to icmp, you may define the parameters shown in Table 1-6
.
Table 1-6 ICMP-specific parameters for advanced ACL rules
Parameters Function Description
icmp-type { icmp-type
icmp-code |
icmp-message }
Specifies the ICMP message
type and code.
The icmp-type argument ranges from
0 to 255.
The icmp-code argument ranges
from 0 to 255.
The icmp-message argument
specifies a message name.
Supported ICMP message names
and their corresponding type and
code values are listed in Table 1-7
.
Table 1-7 ICMP message names supported in advanced ACL rules
ICMP message name Type Code
echo 8 0
echo-reply 0 0
fragmentneed-DFset 3 4
host-redirect 5 1
host-tos-redirect 5 3
host-unreachable 3 1
information-reply 16 0
information-request 15 0
net-redirect 5 0
net-tos-redirect 5 2
net-unreachable 3 0
parameter-problem 12 0
port-unreachable 3 3
protocol-unreachable 3 2
reassembly-timeout 11 1
source-quench 4 0
To Next Page
Loading...
Need help?
General