|
4 Weeks Ago
|
|||
|
|||
traceroute blocked
I am having problems allowing traceroute through my firewall. I used the following pf rule but when I look at the pflog0 log live traceroute seems to be using different ports:
Code:
pass log proto udp from $mgt to $dmzops port 33433 >< 33626 
|
|
4 Weeks Ago
|
||||
|
||||
|
What ports are being used? Per traceroute(8), if UDP is used for tracing the default base is 33434. The port number used will be (base port)+(number of hops)*(number of queries)-1.
Last edited by jggimi; 4 Weeks Ago at 02:14 PM. Reason: typo
|
|
4 Weeks Ago
|
|||
|
|||
|
Even traceroute seems blocked, you can use options to obtain informations, as '-I' or '- P 1'.
Both options use ICMP Echoe message. The second not run with IPv6. (In fact, it's necessary to pass ICMP messages ; which is highly suggestable)
|
|
6 Days Ago
|
||||
|
||||
|
Quote:
|
|
6 Days Ago
|
||||
|
||||
|
Your admin is repeating 35-40 year old advice. I recommend you both read Networking for Systems Administrators by Michael W Lucas.
https://www.amazon.com/Networking-Sy.../dp/B00STLTH74
|
 |
| Thread Tools | |
| Display Modes | |
|
|
Similar Threads
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| UDP protocol failed, as well as IPv6. pkgsrc blocked because of ths(IMHO) | spermwhale_warrior | NetBSD General | 5 | 27th August 2014 09:36 PM |
| SSH is being blocked from WAN however public IP shown in server log | sparky | OpenBSD Security | 3 | 29th October 2012 01:29 PM |
| OpenBSD 4.7 pf and traceroute | fbroce | OpenBSD Security | 5 | 13th September 2010 09:32 PM |
Linear Mode
