dogg_dogg_23774
May 15, 2006Nimbostratus
analyzing tcp or udp port info in ip forwarding mode
Hi,
There is a requirement from customers that they want to forward ip packets only if the packets are icmp or the port number is greater than 1024.
However, when attempting to associate the rule with ip forwarding vs, I receive the following error. Is there anything that can be done to work around the error and accomplish the goal??
01070394:3: TCP::client_port in rule (tcp_test) requires an associated TCP profile on the virtual server (ipforward_test).
By the way, following is the rule I came up with....
when CLIENT_ACCEPTED {
if { [TCP::client_port] > 1024 } {
forward
}
elseif { [IP::protocol] == 1 } {
forward
}
else {
discard
}
}
thanks in advance...