• Download PDF: Configuring ICMP Conditions (SRC CLI) 

• Related Topics
• Before You Configure Classify-Traffic Conditions
• Configuring Classify-Traffic Conditions
• Configuring ICMP Conditions (C-Web Interface)

Configuring ICMP Conditions (SRC CLI)

Use the following configuration statements to add ICMP conditions to a classify-traffic condition:

policies group name list name rule name traffic-condition name icmp-condition {

protocol protocol ;

protocol-operation protocol-operation ;

ip-flags ip-flags ;

ip-flags-mask ip-flags-mask ;

fragment-offset fragment-offset ;

packet-length packet-length ;

icmp-type icmp-type ;

icmp-code icmp-code ;

}

Because the protocol is already set to ICMP, do not change the protocol or protocol-operation options.

To add ICMP conditions to a classify-traffic condition:

1. From configuration mode, enter the ICMP configuration. For example:

   user@host# edit policies group bod list input rule pr traffic-condition ctc icmp-condition

2. (Optional) Configure the value of the IP flags field in the IP header.

   [edit policies group bod list input rule pr traffic-condition ctc icmp-condition]

   user@host# set ip-flags ip-flags

3. (Optional) Configure the mask that is associated with the IP flag.

   [edit policies group bod list input rule pr traffic-condition ctc icmp-condition]

   user@host# set ip-flags-mask ip-flags-mask

4. (Optional) Configure the value of the fragment offset field.

   [edit policies group bod list input rule pr traffic-condition ctc icmp-condition]

   user@host# set fragment-offset fragment-offset

5. (Optional) Configure the packet length on which to match. The length refers only to the IP packet, including the packet header, and does not include any layer 2 encapsulation overhead.

   [edit policies group bod list input rule pr traffic-condition ctc icmp-condition]

   user@host# set packet-length packet-length

6. (Optional) Configure the ICMP packet type on which to match. The packet type must be supported by the router or CMTS device.

   [edit policies group bod list input rule pr traffic-condition ctc icmp-condition]

   user@host# set icmp-type icmp-type

7. (Optional) Configure the ICMP code on which to match. The ICMP code must be supported by the router or CMTS device.

   [edit policies group bod list input rule pr traffic-condition ctc icmp-condition]

   user@host# set icmp-code icmp-code

8. (Optional) Verify the ICMP condition configuration.

   [edit policies group bod list input rule pr traffic-condition ctc icmp-condition]
   user@host# show 
   protocol icmp;
   protocol-operation 1;
   ip-flags ipFlags;
   ip-flags-mask ipFlagsMask;
   fragment-offset ipFragOffset;
   icmp-type icmpType;
   icmp-code icmpCode;