2096
C
138: IP
4 ACL C
HAPTER
V
Description
C
ONFIGURATION
OMMANDS
Table 548 Parameters for advanced IPv4 ACL rules
Parameter
Function
icmp-type
Specifies the
{ icmp-type
ICMP message
icmp-code |
type and code.
icmp-message }
The following table provides the ICMP messages that you can specify in advanced
IPv4 ACL rules.
Table 549 ICMP messages and their codes
ICMP message
echo
echo-reply
fragmentneed-DFset
host-redirect
host-tos-redirect
host-unreachable
information-reply
information-request
net-redirect
net-tos-redirect
net-unreachable
parameter-problem
port-unreachable
protocol-unreachable
reassembly-timeout
source-quench
source-route-failed
timestamp-reply
timestamp-request
ttl-exceeded
Use the
rule
command to define or modify an advanced IPv4 ACL rule. If the rule
does not exist, it is created first.
Use the
command to remove an advanced ACL rule or parameters
undo rule
from the rule.
With the undo rule command, if no parameters are specified, the entire ACL rule
is removed; if other parameters are specified, only the involved information is
removed.
You will fail to create or modify a rule if its permit/deny statement is exactly the
same as another rule. In addition, if the ACL match order is set to auto rather than
config, you cannot modify ACL rules.
Description
The icmp-type argument ranges from 0 to 255.
The icmp-code argument ranges from 0 to 255.
The icmp-message argument specifies a message
name. For available ICMP messages, see Table 549.
Type
8
0
3
5
5
3
16
15
5
5
3
12
3
3
11
4
3
14
13
11
Code
0
0
4
1
3
1
0
0
0
2
0
0
3
2
1
0
5
0
0
0