I have a small problem. I setup a GRE tunnel with "tunnel source dialer 1" (dynamic IP of the dialer interface). The tunnel comes up fine (I use NHRP for next-hop tracking), but the problem is the traceroute. I don't want the IP of the dialer interface shown up in the trace, but the IP of my internal ethernet device (official ip, network's routed over the tun int). Is this possible?
If the router generates a response packet to traceroute it will use as the source address the address of the outbound interface. There are configuration commands to set the source address for some things (like tftp, or syslog, or TACACS, and others) but I am not aware of any way to change that behavior for traceroute.
I do not know how you have the tunnel cofigured, but if you were to configure on the tunnel interface ip unnumbered ethernet 0 (or whatever interface you want to use) instead of configuring a unique IP subnet for the tunnel, then the router would source the traceroute response with the IP of the ethernet interface.
thank you for your answer. Another possibility would be to block ICMP packets with a TTL of 1 (so the IP address of the dialer interface wouldn't show up in a traceroute), but I think cisco (extended) ACLs cannot match the ttl field.
We are pleased to announce availability of Beta software for 16.6.3. 16.6.3 will be the second rebuild on the 16.6 release train targeted towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are looking for early feedback from custome...