3Com Switch 7750 Configuration Guide Guide
602 CHAPTER 57: ACL CONFIGURATION
n
Only Type A I/O Modules support the "range" operation on the TCP/UDP port.
If the protocol type is ICMP, you can also define the following information:
If the protocol type is ICMP, you can also directly input the ICMP message name
after the icmp-type argument. The following table describes some common ICMP
messages.
established
TCP connection
established" flag
Indicates that the ACL
rule is only valid for
the first SYN packet
(when the TCP
connection began)
TCP-specific
argument
Table 472 TCP/UDP-specific rule information
Parameter Type Function Description
Tabl e 473 ICMP-specific rule information
Parameter Type Function Description
icmp-type icmp-type
icmp-code
Type and message
code information of
ICMP packets
Specifies the type and
message code
information of ICMP
packets in the ACL
rule
icmp-type: ICMP
message type,
ranging 0 to 255
icmp-code: ICMP
message code,
ranging 0 to 255
Tabl e 474 ICMP messages
Name ICMP TYPE ICMP CODE
echo Type=8 Code=0
echo-reply Type=0 Code=0
fragmentneed-DFset Type=3 Code=4
host-redirect Type=5 Code=1
host-tos-redirect Type=5 Code=3
host-unreachable Type=3 Code=1
information-reply Type=16 Code=0
information-request Type=15 Code=0
net-redirect Type=5 Code=0
net-tos-redirect Type=5 Code=2
net-unreachable Type=3 Code=0
parameter-problem Type=12 Code=0
port-unreachable Type=3 Code=3
protocol-unreachable Type=3 Code=2
reassembly-timeout Type=11 Code=1
source-quench Type=4 Code=0
source-route-failed Type=3 Code=5
timestamp-reply Type=14 Code=0
timestamp-request Type=13 Code=0
ttl-exceeded Type=11 Code=0