Hi i've been looking how to let traceroute go throught the firewall, but all the documentation i find is different one to another.
I understood that traceroute use an echo request first then the remote nachine replies. My ping is ok, i'd like to do traceroute www.linux.org
iptables -A INPUT -i eth0 -p udp -s $internet --sport 32769:65535 -d $extfw --dport 33434:33523 -j ACCEPT
iptables -A INPUT -i eth0 -p icmp --icmp-type time-exceeded -s $internet -d $extfw -j ACCEPT
iptables -A INPUT -i eth0 -p icmp --icmp-type 11 -s $internet -d $extfw -j ACCEPT
internet is 0.0.0.0/0 ; extfw my external firewall interface
Which one of the rules is correct (i guess they're all wrong).
Does traceroute uses icmp or udp?
Which solution is the best considering that we open a wide range of ports with udp ?
Yahoo! Mail -- Une adresse @yahoo.fr gratuite et en fran�ais !
