could a pix firewall shows as part of a hop on a tracert?
if not, any reason about it.
coz we have done a tracert on a machine accross a pix and it bypasses the pix as a hop.
From lab setup
R3(192.168.12.2) -> (192.168.12.1) R1 (192.168.10.56) -> (192.168.10.1 - outside) Pix (192.168.0.99 - inside) -> (192.168.0.42) R2
I allowed icmp from outside to the inside address of 192.168.0.42.
Type escape sequence to abort.
Tracing the route to 192.168.0.42
1 192.168.12.1 0 msec 0 msec 4 msec
2 192.168.0.42 0 msec 0 msec *
So a pix will not show as part of a traceroute. It doesn't bypass the pix as such it still has to go through the pix but the pix does not respond.