Re: [OT] Pinging and traceroute

To: Debian User List <debian-user@lists.debian.org>
Subject: Re: [OT] Pinging and traceroute
From: Noah Meyerhans <noahm@debian.org>
Date: Sun, 29 Jul 2001 21:38:16 -0400
Message-id: <[🔎] 20010729213816.B7140@morgul.net>
In-reply-to: <[🔎] 20010729020426.A8019@mindspring.com>; from hallstevenson@mindspring.com on Sun, Jul 29, 2001 at 02:04:26AM -0500
References: <[🔎] 20010729020426.A8019@mindspring.com>

On Sun, Jul 29, 2001 at 02:04:26AM -0500, Hall Stevenson wrote:
> 
> Any ideas why I'm unable to run a traceroute to an IP address without
> first pinging it ?? If I try and trace a site, it does little to

I am not sure here.

> I do have an IPTABLES firewall running. Pinging a site does nothing to
> the firewall's logs. Using traceroute does. This is the relevant
> firewall rule, I think:

traceroute doesn't use ICMP (at least, not primarily).  It uses UDP.  I
assume you're filtering UDP somehow?  traceroute runs on a high port
(somewhere in the 30000+ range).  Here's a quote from the traceroute man
page:
	This  program  attempts  to  trace  the route an IP packet
       would follow to some internet host by launching UDP  probe
       packets with a small ttl (time to live) then listening for
       an ICMP "time exceeded" reply from a  gateway.


noah

-- 
 _______________________________________________________
| Web: http://web.morgul.net/~frodo/
| PGP Public Key: http://web.morgul.net/~frodo/mail.html

Attachment: pgpdmoTeg3OqL.pgp
Description: PGP signature

Reply to:

References:
- [OT] Pinging and traceroute
  - From: Hall Stevenson <hallstevenson@mindspring.com>

Prev by Date: Re: Freeing up lost memory
Next by Date: Re: Copying Linux to a new drive
Previous by thread: [OT] Pinging and traceroute
Next by thread: Freeing up lost memory
Index(es):
- Date
- Thread