home

Supported platforms

Getting startedOverviewArchitectureSupported platformsRelease notesWhite papers
Getting startedOverviewArchitectureSupported platformsRelease notesWhite papers

Vyatta documentation

Learn how to install, configure, and operate the Vyatta Network Operating System (Vyatta NOS) and Orchestrator, which help drive our virtual networking and physical platforms portfolio.

Show On this page:

thumbnailSupported platforms

Packet-filtering

Matching ICMP type names

Packets can be filtered for ICMP type names. For example, to create a rule that allows only ICMP echo request packets, perform the following steps in configuration mode.

Note: You can configure rules to match IPv4 ICMP, IPv6 ICMP, IPv6 routing header, or TCP without specifying the respective protocol, provided that a protocol specific match option is present. For example, ICMP type and TCP flags.
Table 1. Accepting ICMP packets with specific type names
Step Command

Set the protocol to match to ICMP. 

vyatta@R1# set security firewall name ICMP-NAME rule 40 protocol icmp

Set the ICMP packet type to match. 

vyatta@R1# set security firewall name ICMP-NAME rule 40 icmp name echo-request

Set the action to accept. 

vyatta@R1# set security firewall name ICMP-NAME rule 40 action accept

Commit the configuration. 

vyatta@R1# commit

Show the configuration. 

vyatta@R1# show security firewall name ICMP-NAME

name ICMP-NAME {
    rule 40 {
        action accept
        protocol icmp
        icmp {
            name echo-request
        }
    }
}
vyatta@R1#

Last updated: May 7, 2021