beautypg.com

NETGEAR M4350-24F4V 24-Port 10G SFP+ Managed AV Network Switch User Manual

Page 817

background image

IGMP Type: If your selection from the Protocol Type menu is IGMP and you
specify the IGMP type, the IP ACL rule matches the specified IGMP message type.
The range is from 0 to 255. If this field is left empty, it means any.

ICMP: If your selection from the Protocol Type menu is ICMP, you can select
either the Type or Message radio button:

-

If you select the Type radio button, note the following:

The Type and Code fields are enabled only if the protocol is ICMP. Use
these fields to specify a match condition for ICMP packets:

-

-

If you specify information in the Type field, the IP ACL rule matches the
specified ICMP message type. The type number can be from 0 to 255.

-

If you specify information in the Code field, the IP ACL rule matches the
specified ICMP message code. The code can be from 0 to 255.

-

If these fields are left empty, it means any.

-

If you select the Message radio button, from the menu, select the type of the
ICMP message to match with the selected IP ACL rule. Specifying a type of
message implies that both the ICMP type and ICMP code are specified. The
ICMP message is decoded into the corresponding ICMP type and ICMP code
within the ICMP type.

The IPv4 ICMP message types are Echo, echo-reply, host-redirect,
mobile-redirect, net-redirect, net-unreachable, redirect, packet-too-big,
port-unreachable, source-quench, router-solicitation,
router-advertisement, TTL-exceeded, time-exceeded, and unreachable.

Fragments: Either select the Enable radio button to allow initial fragments (that
is, the fragment bit is asserted) or leave the default Disable radio button selected
to prevent initial fragments from being used.

This option is not valid for rules that match L4 information such as a TCP port
number, because that information is carried in the initial packet.

Service Type: Select a service type match condition for the extended IP ACL
rule.

The possible values are IP DSCP, IP precedence, and IP TOS, which are
alternative methods to specify a match criterion for the same service type field
in the IP header. Each method uses a different user notation. After you make a
selection is made, you can specify the appropriate values.

-

IP DSCP: This is an optional configuration. Specify the IP DiffServ Code Point
(DSCP) field. The DSCP is defined as the high-order 6 bits of the service type
octet in the IP header. Enter an integer from 0 to 63. To select the IP DSCP,
select one of the DSCP keywords from the menu. To specify a numeric value,

Main User Manual

817

Manage Switch Security

Fully Managed Switches M4350 Series Main User Manual