ICMP Types

Answered Question
Oct 16th, 2007

Hi all,

I would like to know what is decimal equvalent for ICMP type ttl-exceeded?

Some of them I could use as:

0 - for echo-reply

8 - for echo

11 - for time-exceeded

I know that I can use syntax as:

permit icmp any any ttl-exceeded

but I would like to know what is decimal equvalent for it.

Best regards,

Vladimir

I have this problem too.
0 votes
Correct Answer by dominic.caron about 9 years 1 month ago

That's type 3 code 4

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 3.3 (4 ratings)
Loading.
dominic.caron Tue, 10/16/2007 - 04:46

I dont think ttl-exeeded type exist.

ttl-exceeded is (TYPE 11,CODE 0)

ICMP message have a code field (8bit) that can give you further info.

Rate all useful post

vnovakov Tue, 10/16/2007 - 06:08

Thanks for quick answer!, Does it mean than that:

permit icmp any any ttl-exceeded

will allow only ICMP packets type 11 with code O and

permit icmp any any time-exceeded

will allow all ICMP type 11 with code 0 or 1?

Am I correct?

I have found a way how to add rules as ICMP type and code:

permit icmp any any 11

permit icmp any any 11 0

permit icmp any any 11 1

will apear as:

permit icmp any any time-exceeded

permit icmp any any ttl-exceeded

permit icmp any any reassembly-timeout

Also I'm confused with packet-to-big. By RFC 1885 it is Type 2 Code 0. But under Cisco ISO 12.4:

permit icmp any any 2 0

rule will not apear as:

permit icmp any any packet-too-big

am I wrong about packet-too-big icmp type and code that is used by Cisco?

regards,

Vladimir

Actions

This Discussion