H3C Technologies H3C S3100 Series Switches User Manual

Page 386

Advertising
background image

Operation Manual – ACL

H3C S3100-52P Ethernet Switch

Chapter 1 ACL Configuration

1-10

Parameter

Type

Function

Description

established

TCP

connection

flag

Specifies that

the rule applies

to TCP packets

with the ack or
rst

flag (Packets

of this type are

TCP connection

packets.)

TCP-specific argument


If the protocol type is ICMP, you can also define the information listed in Table 1-9.

Table 1-9

ICMP-specific ACL rule information

Parameter

Type

Function

Description

icmp-type

icmp-type
icmp-code

Type and

message

code

information

of ICMP

packets

Specifies the

type and

message code

information of

ICMP packets in

the rule

icmp-type

: ICMP message

type, ranging from 0 to 255
icmp-code

: ICMP message

code, ranging from 0 to 255


If the protocol type is ICMP, you can also just input the ICMP message name after the
icmp-type

keyword. Table 1-10 lists some common ICMP messages.

Table 1-10

ICMP messages

Name

ICMP type

ICMP code

echo Type=8

Code=0

echo-reply Type=0 Code=0

fragmentneed-DFset Type=3

Code=4

host-redirect Type=5

Code=1

host-tos-redirect Type=5

Code=3

host-unreachable Type=3

Code=1

information-reply Type=16

Code=0

information-request Type=15

Code=0

net-redirect Type=5

Code=0

net-tos-redirect Type=5

Code=2

net-unreachable Type=3

Code=0

parameter-problem Type=12

Code=0

port-unreachable Type=3

Code=3

Advertising
See also other documents in the category H3C Technologies Routers: