ICMP type 3 code ?????????? [7:7697]
Question guys, I have received the following back from a ciso router that I do not have control over. ICMP type 3 code 0xd. hex d = decimal 13. This code value 13 doesn't exist. Is this due to an inbound access-list? any ideas? Look at the packet debug below and let me know your opinions. -- IP -- 192.168.240.2 == 10.108.226.7 ver = 0x4 hlen = 0x5 tos = 0x0 tlen = 0x38 id = 0x739d flags = 0x0 frag off=0x0 ttl = 0xfe proto=0x1 chksum = 0xac08 -- ICMP -- type = 0x3 code = 0xd checksum=0xf5a0 identifier = 0x0seq = 0x0 -- DATA -- 001c: 45 00 00 54 b0 07 40 00 fc 01 d5 d6 0a 6c e2 07 | E..T..@..l.. 002c: 0a d0 01 87 08 00 c9 b0 35 a1 00 00 22 | 5... - END OF PACKET - Chris Burnham, Systems Engineer, Delphis Consulting Plc. Tel: +(44) 020 7916 0200 Mob: +(44) 07799403576 [EMAIL PROTECTED] This e-mail and any files transmitted with it are intended solely for the addressee and are confidential. They may also be legally privileged.Copyright in them is reserved by Delphis Consulting PLC [Delphis] and they must not be disclosed to, or used by, anyone other than the addressee.If you have received this e-mail and any accompanying files in error, you may not copy, publish or use them in any way and you should delete them from your system and notify us immediately.E-mails are not secure. Delphis does not accept responsibility for changes to e-mails that occur after they have been sent. Any opinions expressed in this e-mail may be personal to the author and may not necessarily reflect the opinions of Delphis Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=7697t=7697 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ICMP type 3 code ?????????? [7:7697]
Hi Chris, The ICMP code 13 means communication administratively prohibited (e.g. firewall blocked) For your case I think it was due to the access list. Other ICMP code: 0 - network unreachable 1 - host unreachable 2 - protocol unreachable 3 - fragmentation needed and the do=not-fragment bit set 5 - source route failed 7 - destination host unknown 11 - network unreachable for type of service (TOP) 12 - host unreachable for type of service 13 - communicaton administratively prohibited (e.g. firewall blocked) 14 - host precedence violation 15 - precedence cut-off in effect You can find more detail information from the following document in Chapter 2 Section 4 which covers ICMP in detail: http://www.ireste.fr/fdl/ars/rpoly/pdf/s_serv2.pdf Regards, Ronny CCNP - Original Message - From: Burnham, Chris To: Sent: Friday, June 08, 2001 6:41 PM Subject: ICMP type 3 code ?? [7:7697] Question guys, I have received the following back from a ciso router that I do not have control over. ICMP type 3 code 0xd. hex d = decimal 13. This code value 13 doesn't exist. Is this due to an inbound access-list? any ideas? Look at the packet debug below and let me know your opinions. -- IP -- 192.168.240.2 == 10.108.226.7 ver = 0x4 hlen = 0x5 tos = 0x0 tlen = 0x38 id = 0x739d flags = 0x0 frag off=0x0 ttl = 0xfe proto=0x1 chksum = 0xac08 -- ICMP -- type = 0x3 code = 0xd checksum=0xf5a0 identifier = 0x0seq = 0x0 -- DATA -- 001c: 45 00 00 54 b0 07 40 00 fc 01 d5 d6 0a 6c e2 07 | E..T..@..l.. 002c: 0a d0 01 87 08 00 c9 b0 35 a1 00 00 22 | 5... Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=7704t=7697 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ICMP type 3 code ?????????? [7:7697]
On Fri, 8 Jun 2001, Burnham, Chris wrote: Question guys, I have received the following back from a ciso router that I do not have control over. ICMP type 3 code 0xd. hex d = decimal 13. This code value 13 doesn't exist. It does. See: http://www.isi.edu/in-notes/iana/assignments/icmp-parameters and http://www.cis.ohio-state.edu/cgi-bin/rfc/rfc1812.html. Is this due to an inbound access-list? Possibly an access-list, or the equivalent for whatever box sends it. Not necessarily inbound, though. -- Someone approached me and asked me to teach a javascript course. I was about to decline, saying that my complete ignorance of the subject made me unsuitable, then I thought again, that maybe it doesn't, as driving people away from it is a desirable outcome. --Me Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=7711t=7697 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]