Re: [flalug] firewall gurus, help please!

From: Robert Foxworth (rfoxwor1@tampabay.rr.com)
Date: Tue Dec 16 2003 - 08:26:43 EST

Next message: Smitty: "[flalug] microsoft's new security patch strategy"
Previous message: Eric Bravick: "Re: [flalug] firewall gurus, help please!"
In reply to: Eric Bravick: "Re: [flalug] firewall gurus, help please!"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

> One guess might be that many firewalls do not allow the use of UDP
> packets that many version of traceroute use by default.

I believe that "traceroute" on a un*x/linux etc system uses UDP at
port ranges around 33400, while "tracert" on a Windoze system
uses ICMP, as default behavior.

Just tried this using RH9. Default is UDP. Adding the "I" (uppercase
I as in India) uses ICMP instead. The replies are always ICMP TTL
exceeded. Bob

> Try traceroute -I foo.com instead to force the use of ICMP messages.
>
>

Next message: Smitty: "[flalug] microsoft's new security patch strategy"
Previous message: Eric Bravick: "Re: [flalug] firewall gurus, help please!"
In reply to: Eric Bravick: "Re: [flalug] firewall gurus, help please!"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.3 : Fri Aug 01 2014 - 19:59:57 EDT