On Sun, Nov 18, 2012 at 5:38 AM, Roy Smith <r...@panix.com> wrote: > In article <mailman.3774.1353175657.27098.python-l...@python.org>, > w...@mac.com wrote: >> Don't forget that most firewalls don't decrement) the time-to-live number, >> and unless you REALLY know what to look for, are invisible. > > Interesting. If the firewall doesn't decrement TTL (a particular nasty > thing to do, and thus completely expected of a firewall) what REALLY > knowledge would enable you to detect its presence in a traceroute > printout at all?
If it's a router, then it definitely should be decrementing TTLs, though if the firewall is simply a part of another hop, you won't notice it specifically. What's more common, though, is devices that decrement TTL and drop packets but don't send back Time Exceeded messages, giving the classic "* * *" line. I'm not sure if that's what was being referred to, though. (And they aren't necessarily firewalls.) ChrisA -- http://mail.python.org/mailman/listinfo/python-list
