Final answer:
A network administrator can use source TCP port number and destination UDP port number as packet filters in an IPv4 extended ACL. These filters help control traffic and manage network services. ICMP message type is another valid criteria for filtering, while destination MAC address is not used in extended ACLs.
Step-by-step explanation:
The network administrator can implement a variety of packet filters using an IPv4 extended Access Control List (ACL). Unlike standard ACLs which only filter based on source IP address, extended ACLs can filter based on several additional attributes.
An extended ACL can filter based on the source TCP port number and destination UDP port number. These ports are part of the TCP/IP protocol suite which governs how data is transmitted across the network. By specifying port numbers in the ACL, the administrator can control traffic for specific services, such as HTTP on port 80 or SSH on port 22.
Additionally, extended ACLs can filter on the ICMP message type. ICMP is used for sending error messages and operational information indicating, for example, whether a service is available or if a router cannot reach an IP address.
It is important to note that extended ACLs cannot filter directly by destination MAC address, as these are Layer 2 addresses used within the local network segment and not the IP network layer where ACLs operate. Similarly, computer type and 'hello' address are not standard options for IPv4 extended ACLs.