11-30-2008 07:16 PM - edited 03-04-2019 12:32 AM
Hi,
I would like to check if I get a traceroute results like this,
Tracing route to 129.215.42.34 over a maximum of 30 hops
1 2 ms 1 ms <1 ms 10.251.5.252
2 <1 ms <1 ms <1 ms 10.251.4.66
3 1 ms 1 ms 1 ms 129.215.32.22
4 15 ms 15 ms 15 ms 129.215.42.34
5 15 ms 15 ms 15 ms 129.215.42.34
6 15 ms 15 ms 15 ms 129.215.42.34
7 15 ms 15 ms 15 ms 129.215.42.34
If it keeps on repeating that IP on the hop, what does this mean ?
Thank you,
Cheers,
- InterentB -
11-30-2008 10:21 PM
This is generally caused if there is a ASA/PIX in between the paths.
When NAT is enabled in PIX 7.0, the IP addresses of the PIX interfaces and the real IP addresses of the intermediate hops cannot be seen
The destination address is displayed multiple times for each internal hop.
To make ASA/PIX showup as hop in tracert you need to apply "set connection decrement-ttl" in "global_policy" in "default_class" plus the required rules for allowing ICMP types
HTH
Narayan
11-30-2008 10:35 PM
Thank you Narayan. That is very helpful indeed.
Now for a silly question ... ;)
Apply "set connection decrement-ttl" in "global_policy" in "default_class" plus the required rules for allowing ICMP type
I presume that this is entered on the PIX firewall right ?
Pls advice,
Cheers,
- InternetB -
11-30-2008 10:41 PM
Yes correct.
btw where are you placed in EDS, KL?
Narayan
11-30-2008 10:50 PM
Yes, thats correct. So looks like we are working for the same company then ah ... ;).
Excellent ... :)
- InternetB -
11-30-2008 10:57 PM
Yup, I work for Mphasis, an EDS company
Mostly work on EDS-India related requirements. Worked a lot with Ruban, Nirmal, Eric in KL :-)
Have a good day
Narayan
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide