Filter Blocks
NOTE | To use this shortcut, the transport protocol specified must be by name, not |
| by number. For example, specifying dstport http/6 is not allowed. |
|
|
If a port is specified by a service name without the transport protocol immediately following it, or if it specified as a number and the shortcut is not applicable, you can specify the transport protocol value attribute separately, using the protocol attribute (for example as protocol tcp), If the transport protocol is not specified either with the service name or as a separate attribute, expanded filters are created for each protocol number the service name converts to.
Additional Attributes
Additional filter attributes you can specify are listed below. You can combine these attributes with address, port and priority attributes, or use any of these alone.
protocol n
Table
Table | Supported Transport Protocol Numbers | ||
|
| ||
Transport Protocol | Protocol | ||
Numbers | |||
| |||
|
|
| |
6 |
| TCP | |
|
|
| |
17 |
| UDP | |
|
|
| |
xport n
Same as protocol n above. Synonymous with protocol attribute.
net[proto] n
Network protocol number. For example, over Ethernet networks this specifies the Ethertype frame.
NOTE | IEEE and IEEE SNAP formats are similar enough that this |
| attribute works for both.) |
|
|
Table
68 | Chapter 4 |