It depends on which traceroute client you use. Most unix clients
use udp packet to traceroute, and thus it doesn't "work". You can
use traceroute -I for it to use ICMP packets, and it'll probably
go through.
On Windows, it uses ICMP by default (I think) but you'll have to check.
Dave
-----Original Message-----
From: Simon Guo [mailto:[EMAIL PROTECTED]]
Sent: Friday, July 21, 2000 11:47 AM
To: [EMAIL PROTECTED]
Subject: [FW1] Ping vs traceroute
Hi, Firwallers:
I have a firewall-1 that allows "ping" but not "traceroute". Is this a
normal expected behavior? Is the rule accepting "icmp" supposted to allow
both "piong" and "traceroute".
I am a little confused. I appreciate all your help to understand this
phenomena.
Simon
============================================================================
====
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
============================================================================
====
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
