08-04-2012 12:39 AM - edited 03-04-2019 05:10 PM
Hi Everyone
can someone pls tell me the difference between the two lines belown in an access-list.
permit icmp any any time-exceeded
and
permit icmp any any ttl-exceeded
Thanks
Afshan
08-04-2012 01:06 AM
Here is my understanding;
Type 11 — Time Exceeded
Codes Description
0 Time to Live exceeded in Transit
1 Fragment Reassembly Time Exceeded
If you permit "time-exceeded", it would permit both codes 0 and 1
If you permit "ttl-exceeded", it would permint code 0.
Also check below link
http://www.firewall.cx/networking-topics/protocols/icmp-protocol/156-icmp-time-exceeded.html
08-04-2012 03:14 AM
Hi Sudeep
Did u find any document from cisco that says so?
Afshan
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide