[e-nsp] ICMP/UDP access list

Marcin Kuczera marcin at leon.pl
Wed Dec 13 06:32:32 EST 2006


Hello, I was trying to establish access list for particular addresses, both 
ICMP and UDP protocols.
Just ICMP looks like this:

create access-list RISP icmp destination 212.106.152.0/25 source any type 
any code any deny ports 1

* Summit5iTx:48 # show access-list
  Rule          Dest/mask:L4DP          Src/mask:L4SP         Flags  Hits
RISP     212.106.152.0  /25:0     0.0.0.0        /0 :65535 M-D-N 0
Flags: I=IP, T=TCP, U=UDP, E=Established, M=ICMP
       P=Permit Rule, D=Deny Rule
       N=Port Specific Rule, X=Any Port

however - it doesn't work... :(
is it any bug or I'am not informed about something ?

Primary EW Ver:   7.4.3.5 [ssh] [base]

Regards,
Marcin 



More information about the extreme-nsp mailing list