Viewing and Configuring ACLs 227
To enable the established option for TCP ACEs
By default, a new TCP ACE applies to new sessions as well as established
(existing) sessions. To apply the ACE only to established sessions, enable
the established option.
1Select the TCP ACE in the ACL table.
2In the Task List panel, select Enable Established Connections.
To specify the type and code for ICMP ACEs
1Select the ICMP ACE in the ACL table.
2In the Task List panel, select ICMP Properties.
3Select or type the ICMP message type in the Type box. (See Table17.)
4Select or type the ICMP message code in the Code box. (See Table17.)
5Click OK.
Table17 ICMP Messages and Codes
ICMP Message (Type Number) Code (Number)
Echo Reply (0) None
Destination Unreachable (3) Network Unreachable (0)
Host Unreachable (1)
Protocol Unreachable (2)
Port Unreachable (3)
Fragmentation Needed (4)
Source Route Failed (5)
Source Quench (4) None
Redirect (5) Network Redirect (0)
Host Redirect (1)
TOS and Network Redirect (2)
TOS and Host Redirect (3)
Echo (8) None
Time Exceeded (11) TTL Exceeded (0)
Fragment Reassembly Time Exceeded
(1)
Parameter Problem (12) None