Addrtype filter Table Match Extension

The addrtype match extension is used to match packets based on the type of address used, such as unicast, broadcast, and multicast. The types of addresses include those listed in Table 3.20.

This document is created with trial version of CHM2PDF Pilot 2.15.72.

Table 3.20. Address Types Used with the addrtype Match

NAME DESCRIPTION

Table 3.20. Address Types Used with the addrtype Match

NAME DESCRIPTION

ANYCAST

An anycast packet

BLACKHOLE

A blackhole address

BROADCAST

A broadcast address

LOCAL

A local address

MULTICAST

A multicast address

PROHIBIT

A prohibited address

UNICAST

A unicast address

UNREACHABLE

An unreachable address

unSPEC An unspecified address unSPEC An unspecified address

Two commands are used with the addrtype match, as listed in Table 3.21 Table 3.21. addrtype Match Commands

OPTION DESCRIPTION

--src-type

<type>

Matches for addresses with a

source of

type <type>.

--dst-type

<type>

Matches for addresses with a

destination

of type <type>-

iprange filter TABLE MATCH

Sometimes defining a range of IP addresses using CIDR notation is insufficient for your needs. For example, if you need to limit a certain range of IPs that don't fall on a subnet boundary or cross that boundary by only a couple addresses, the iprange match type will do the job.

Using the iprange match, you specify an arbitrary range of IP addresses for the match to take effect. The iprange match can also be negated. Table 3.22 lists the commands for the iprange match.

Was this article helpful?

0 0

Post a comment