Use the TrafficDescriptor statement to describe IP traffic in terms of one or more of the following characteristics: IP protocol, source and destination port values, job name, NetAccess security zone, and multilevel-security (MLS) label.
Restriction: The TrafficDescriptor statement is available for use only with Routing policies.
>>-TrafficDescriptor--+------+----------------------------------> '-name-' >--| Put Braces and Parameters on Separate Lines |------------->< Put Braces and Parameters on Separate Lines |--+-{--------------------------------+-------------------------| +-| TrafficDescriptor Parameters |-+ '-}--------------------------------' TrafficDescriptor Parameters .-Protocol All------. .-SourcePortRange 0--------. |--+-------------------+--+--------------------------+----------> '-Protocol--+-Tcp-+-' '-SourcePortRange--+-n---+-' +-6---+ '-n m-' +-Udp-+ +-17--+ '-All-' .-DestinationPortRange 0--------. >--+-------------------------------+--+--------------+----------> '-DestinationPortRange--+-n---+-' '-Jobname name-' '-n m-' >--+-------------------+--+--------------------+----------------| '-SecurityZone name-' '-SecurityLabel name-'
Rule: If this TrafficDescriptor statement is not specified inline within another statement, a name value must be provided.
If a name is not specified for an inline TrafficDescriptor statement, a nonpersistent system name is created.Rule: For the Routing policy type, the relevant protocols are TCP and UDP.
Valid values for n are in the range 0 - 65 535. If 0 is specified for n, the rule applies to any source port. If n is specified as the beginning value for a range, then 0 is not a valid value.
If an m value is specified, it must be greater than or equal to the n value and less than 65 536.
Rule: Include a blank, a colon (:), or a dash (-) as a delimiter.
Valid values for n are in the range 0 - 65 535. If 0 is specified for n, then the rule applies to any destination port. If n is specified as the beginning value for a range, then 0 is not a valid value.
If an m value is specified, it must be greater than or equal to the n value and less than 65 536.
Rule: Include a blank, a colon (:), or a dash (-) as a delimiter.
For Routing policies, the name value specifies the NetAccess security zone that an outbound IP packet must match. The outbound packet's destination IP address is used to determine the packet's NetAccess security zone in the NetAccess table defined in the TCP/IP profile. For more information about network access control, see NETACCESS statement.
For Routing policies, the name value specifies the MLS security label that an outbound IP packet must match. The outbound packet's destination IP address is used to determine the packet's NetAccess security zone in the NetAccess table defined in the TCP/IP profile. The MLS security label is the label associated with the NetAccess zone. For more information, see the TCP/IP networking in a multilevel-secure environment information in z/OS Communications Server: IP Configuration Guide.