first of all is it clear to you how traceroute works?
http://en.wikipedia.org/wiki/Traceroute
On Unix-like <http://en.wikipedia.org/wiki/Unix-like> operating systems,
the traceroute utility by default uses User Datagram
Protocol<http://en.wikipedia.org/wiki/User_Datagram_Protocol>
(UDP) datagrams <http://en.wikipedia.org/wiki/Datagram> with destination port
numbers <http://en.wikipedia.org/wiki/Port_number> from 33434 to 33534. The
traceroute utility usually has an option to specify use of ICMP echo
request (type 8) instead, as used by the
Windows<http://en.wikipedia.org/wiki/Windows>
*tracert* utility.
does this answer to your question?
On Thu, Jan 24, 2013 at 4:20 AM, Sarad <tosara_at_gmail.com> wrote:
> Hi Guys,
>
> As per my understanding to allow traceroute through a ACL we need to allow
> icmp port-unreachable & icmp time-exceeded and udp 33400 34400 based on the
> ACL direction.
>
>
> Can somebody enlighten me the usage of *traceroute* parameter in a icmp ACL
>
> Cheers
> Sara
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
>
>
>
>
>
>
>
-- @ccie99999 https://twitter.com/ccie99999 Blogs and organic groups at http://www.ccie.netReceived on Thu Jan 24 2013 - 05:03:00 ART
This archive was generated by hypermail 2.2.0 : Sun Feb 03 2013 - 16:27:17 ART