Would any Cisco experts be able to lend a hand with the following ACL requirements that I need to implement on a Cisco router at work?
1. Block all inbound ICMP messages with the exception of Echo Reply (type 0), and Time Exceeded (type 11). ICMP message number 3, code 4, are permitted inbound with the following exception: Must be denied from external access gateway (AG) addresses, otherwise permitted.
2. Also block outbound ICMP traffic message types except Echo Request (type 8), Parameter Problem (type 12), and Source Quench (type 4) Destination Unreachable - Fragmentation Needed and Don't Fragment was Set (type3, code 4).
3. Also block all inbound traceroutes to prevent network discovery by unauthorized users.
Thanks for any help!