On Sat, 13 May 2000, Kurt Glazemakers wrote:
>
> Hi,
>
> does anyone know how to hide a Linux-router for traceroute. Here is the
> example:
>
> ares!kglazema:/usr/sbin$./traceroute 10.10.10.1
> traceroute to 10.10.10.1 (10.10.10.1), 30 hops max, 38 byte packets
> 1 hera.atlantis.rug.ac.be (10.10.84.1) 0.381 ms 0.313 ms 0.295 ms
> 2 typhon.atlantis.rug.ac.be (10.10.84.12) 0.735 ms 0.328 ms 0.372
> ms
> 3 10.10.10.1 (10.10.10.1) 1.404 ms * 0.909 ms
>
> Typhon is a Linux-router using kernel 2.2.14. I don't want that the name
> and the IP-address show up using traceroute.
>
> Someone told me that some large ISP use the same trick to hide there
> internal topology. Could anyone confirm this, or give an example of such
> an ISP and where I can find more information about it.
>
> Many thanks,
>
> Kurt Glazemakers
>
Kurt,
You can set your machine so it doesn't respond to traceroute by
blocking incomming traceroute. What you will want to block is outgoing ICMP
packets types 3 and 11. With IP chains, you can block it for just your
connection to the Internet, or block it completely. If you want an
example of the rules, let me know and I will send you one when I am where
I can access my firewall rules.
Mikkel
--
Do not meddle in the affairs of dragons,
for you are crunchy and taste good with ketchup.
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to [EMAIL PROTECTED]
