CiscoXR¶

Header Format¶

The ciscoxr header designation has the following format:

targets:
    ciscoxr: [filter name] {inet6}

• filter name: defines the name or number of the cisco filter.
• inet6: specifies the output be for IPv6 only filters.

Term Format¶

• for common keys see common.md

• address: One or more network address tokens, matches source or destination.

• destination-exclude: Exclude one or more address tokens from the specified destination-address
• dscp_match: Match a DSCP number.
• icmp-code: Specifies the ICMP code to filter on.
• logging: Specify that this packet should be logged via syslog.
• next_ip: next hop (address token -> single IP) for ACL based forwarding
• owner: Owner of the term, used for organizational purposes.
• source-exclude: exclude one or more address tokens from the specified source-address.
• verbatim: this specifies that the text enclosed within quotes should be rendered into the output without interpretation or modification. This is sometimes used as a temporary workaround while new required features are being added.

Sub Tokens¶

Actions¶

• accept
• deny
• next
• reject
• reject-with-tcp-rst

Option¶

• established: Only match established connections, implements tcp-established for tcp and sets destination port to 1024- 65535 for udp if destination port is not defined.
• is-fragment: Matches on if a packet is a fragment.
• tcp-established: Only match established tcp connections, based on statefull match or TCP flags. Not supported for other protocols.
• tcp-initial: Only match initial packet for TCP protocol.