Re: Can't traceroute to my box
Frank DeChellis wrote: Hi. I am new to FreeBSD. I have been using NetBSD for about 9 years. I have FreeBSD v. 4.8 Release #1 running. Everything is smooth expect for one thing. I can't traceroute to the box. I can do a traceroute -I to it, but not a regular traceroute, which tells me something about UDP, but I don't know where to look. IS there a file somewhere that is closing certain UDP ports that respond to traceroute? Apart from the usual suspect (firewall filtering out the incoming UDP and/or outgoing ICMP packets), what does sysctl net.inet.udp.blackhole show? If it is _not_ 0 it means that UDP ports that are not in use don't generate a response, which implies that the normal 'traceroute' won't work. This feature is intended to make the life of (port scanning) hackers even more miserable than it must be already. There is a related variable for TCP as well (net.inet.tcp.blackhole). Uwe -- Uwe Doering | EscapeBox - Managed On-Demand UNIX Servers [EMAIL PROTECTED] | http://www.escapebox.net ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Can't traceroute to my box
Hi. I am new to FreeBSD. I have been using NetBSD for about 9 years. I have FreeBSD v. 4.8 Release #1 running. Everything is smooth expect for one thing. I can't traceroute to the box. I can do a traceroute -I to it, but not a regular traceroute, which tells me something about UDP, but I don't know where to look. IS there a file somewhere that is closing certain UDP ports that respond to traceroute? Other than this, the box is working fine. Thanks and I look forward to learning more about FreeBSD. Frank - Frank DeChellis, President Internet Access Worldwide 3 East Main St. Welland, ON, Canada L3B 3W4 1-905-714-1400 http://www.iaw.com - ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Can't traceroute to my box
On Fri, 26 Dec 2003, Frank DeChellis wrote: Hi. I am new to FreeBSD. I have been using NetBSD for about 9 years. I have FreeBSD v. 4.8 Release #1 running. Everything is smooth expect for one thing. I can't traceroute to the box. I can do a traceroute -I to it, but not a regular traceroute, which tells me something about UDP, but I don't know where to look. Are you using a firewall of some kind? The last hop of a traceroute ends with a 'Port unreachable ICMP. If the firewall is blocking UDP, you get no response. IS there a file somewhere that is closing certain UDP ports that respond to traceroute? No that I am aware off, unless you're using a firewall. Fer ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Can't traceroute to my box
I'm just curious, Fernando.. On which platform are you using Netbsd? - Original Message - From: Fernando Gleiser [EMAIL PROTECTED] To: Frank DeChellis [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Friday, December 26, 2003 9:13 AM Subject: Re: Can't traceroute to my box On Fri, 26 Dec 2003, Frank DeChellis wrote: Hi. I am new to FreeBSD. I have been using NetBSD for about 9 years. I have FreeBSD v. 4.8 Release #1 running. Everything is smooth expect for one thing. I can't traceroute to the box. I can do a traceroute -I to it, but not a regular traceroute, which tells me something about UDP, but I don't know where to look. Are you using a firewall of some kind? The last hop of a traceroute ends with a 'Port unreachable ICMP. If the firewall is blocking UDP, you get no response. IS there a file somewhere that is closing certain UDP ports that respond to traceroute? No that I am aware off, unless you're using a firewall. Fer ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
