Re: ICMP ACL parameters from ccie99999 on 2013-01-24 (Ccielab archives 01/2013)

From: ccie99999 <ccie99999_at_gmail.com>
Date: Thu, 24 Jan 2013 11:46:44 +0000

sorry.. I've re-read and I've completely misunderstood the question.

On Thu, Jan 24, 2013 at 11:04 AM, Bogdan Sass <bogd.no.spam_at_gmail.com>wrote:

> On 24/01/2013 07:03, ccie99999 wrote:
>
>> first of all is it clear to you how traceroute works?
>>
>> http://en.wikipedia.org/wiki/**Traceroute<http://en.wikipedia.org/wiki/Traceroute>
>>
>> On Unix-like <http://en.wikipedia.org/wiki/**Unix-like<http://en.wikipedia.org/wiki/Unix-like>>
>> operating systems,
>>
>> the traceroute utility by default uses User Datagram
>> Protocol<http://en.wikipedia.**org/wiki/User_Datagram_**Protocol<http://en.wikipedia.org/wiki/User_Datagram_Protocol>
>> >
>> (UDP) datagrams <http://en.wikipedia.org/wiki/**Datagram<http://en.wikipedia.org/wiki/Datagram>>
>> with destination port
>> numbers <http://en.wikipedia.org/wiki/**Port_number<http://en.wikipedia.org/wiki/Port_number>>
>> from 33434 to 33534. The
>>
>> traceroute utility usually has an option to specify use of ICMP echo
>> request (type 8) instead, as used by the
>> Windows<http://en.wikipedia.**org/wiki/Windows<http://en.wikipedia.org/wiki/Windows>
>> >
>> *tracert* utility.
>>
>>
>> does this answer to your question?
>>
>
> No, it doesn't. Because that particular parameter doesn't refer to
> anything above.
>
> That particular type of ICMP packet (ICMP traceroute - type 30) isn't
> really used by any of them. Instead, you'll only see it in very... unusual
> scenarios (such as an extended ping with "Record route" set). See Scott
> Morris's answer (linked a bit earlier by Joe - http://forums.**
> internetworkexpert.com/forums/**p/3081/9985.aspx<http://forums.internetworkexpert.com/forums/p/3081/9985.aspx>) for more details.
>
> And if you need more, you can always go directly to the source:
> http://tools.ietf.org/html/**rfc1393#section-2.3<http://tools.ietf.org/html/rfc1393#section-2.3>
>
> A nice idea, too bad it never really quite caught on :)
>
> --
> Bogdan Sass
> CCSP,LPIC-1,VCP5-DT,CCIE #22221 (RS)
> Information Systems Security Professional
> "Curiosity was framed - ignorance killed the cat"
>
>

-- 
@ccie99999
https://twitter.com/ccie99999
Blogs and organic groups at http://www.ccie.net

Received on Thu Jan 24 2013 - 11:46:44 ART

This archive was generated by hypermail 2.2.0 : Sun Feb 03 2013 - 16:27:17 ART