http://www.echogent.com/cgi-bin/fwlog.pl
This is great page to analize this yourself.
Andrey
Arif Mamdani wrote:
I'm hoping someone on the list can give me some insight into what's
going on here. At first I thought that it might be a traceroute, but
I was under the impression that traceroute
Try running a tcpdump on your firewall, then trace it from there
backwards
> -Original Message-
> From: Arif Mamdani [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, November 26, 2002 07:16
> To: Ray Olszewski
> Cc: [EMAIL PROTECTED]
> Subject: Re: [leaf-user] str
On Monday, November 25, 2002, at 11:52 PM, Ray Olszewski wrote:
But while those assumptions hold true for Linux traceroute (and even
with it, most can be changed via command-line flags), other
implementations of traceroute need not follow them. Were I to guess
about this traffic, I'd suspect i
While this pattern resembles a traceroute, it differs from Linux traceroute
in several ways.
1. As you noted, the port is not being incremented. Linux traceroute
increments the port with every packet, using 33435 for the first packet only.
2. The ttls do not change in an ordered way. Linux trac
