extensions/libipt_icmp.t - platform/external/iptables - Gitiles

 :INPUT,FORWARD,OUTPUT
 -p icmp -m icmp --icmp-type any;=;OK
 # output uses the number, better use the name?
 # ERROR: cannot find: iptables -I INPUT -p icmp -m icmp --icmp-type echo-reply
 # -p icmp -m icmp --icmp-type echo-reply;=;OK
 # output uses the number, better use the name?
 # ERROR: annot find: iptables -I INPUT -p icmp -m icmp --icmp-type destination-unreachable
 # -p icmp -m icmp --icmp-type destination-unreachable;=;OK
 # it does not acccept name/name, should we accept this?
 # ERROR: cannot load: iptables -A INPUT -p icmp -m icmp --icmp-type destination-unreachable/network-unreachable
 # -p icmp -m icmp --icmp-type destination-unreachable/network-unreachable;=;OK
 -m icmp;;FAIL
 # we accept "iptables -I INPUT -p tcp -m tcp", why not this below?
 # ERROR: cannot load: iptables -A INPUT -p icmp -m icmp
 # -p icmp -m icmp;=;OK
	:INPUT,FORWARD,OUTPUT
	-p icmp -m icmp --icmp-type any;=;OK
	# output uses the number, better use the name?
	# ERROR: cannot find: iptables -I INPUT -p icmp -m icmp --icmp-type echo-reply
	# -p icmp -m icmp --icmp-type echo-reply;=;OK
	# output uses the number, better use the name?
	# ERROR: annot find: iptables -I INPUT -p icmp -m icmp --icmp-type destination-unreachable
	# -p icmp -m icmp --icmp-type destination-unreachable;=;OK
	# it does not acccept name/name, should we accept this?
	# ERROR: cannot load: iptables -A INPUT -p icmp -m icmp --icmp-type destination-unreachable/network-unreachable
	# -p icmp -m icmp --icmp-type destination-unreachable/network-unreachable;=;OK
	-m icmp;;FAIL
	# we accept "iptables -I INPUT -p tcp -m tcp", why not this below?
	# ERROR: cannot load: iptables -A INPUT -p icmp -m icmp
	# -p icmp -m icmp;=;OK