On Thu, 5 Jul 2001, Philip S Tellis wrote:
On Thu, 5 Jul 2001, Aseem wrote:
traceroute does uses time-excedded icmp packets. ttl (time to live which is actually number of hops) field in IP header is increased each time you receive an icmp
The problem is that I haven't detected any icmp traffic when using traceroute.
i dont know whats happening at your side. but every router which drops a packet (in this case reason = time-exceeded) generates an icmp error packet and puts its own ip address as the source ip addr in the icmp packet. Thus we know in between hops till the destination. i haven't used ipchain logs so can not comment on it but if you can see traceroute output properly then you are receiving icmp packets. try using some other packet recording utility.
btw from where should i start reading about ipchains?
bye aseem