Introduction
I will present a few examples that may be helpful in troubleshooting network problems wit ICMP, UDP and TCP communication with using traceroute
For test we can use simple Vagrant file.
Let’s start
ICMP
Checking if the route is routed to the destination and if the IP is reachable.
root@master:/home/vagrant# traceroute -n -q 1 -I 192.168.123.124
traceroute to 192.168.123.124 (192.168.123.124), 30 hops max, 60 byte packets
1 192.168.123.124 0.391 msTCP
Send SYN packet and wait for Time-to-live exceeded. When ! X is returned, it means it communication is blocked.
- Response when communicating with the DEST-IP PORT is allowed
root@master:/home/vagrant# traceroute -n -q 1 -T -p 80 192.168.123.124
traceroute to 192.168.123.124 (192.168.123.124), 30 hops max, 60 byte packets
1 192.168.123.124 0.340 ms- Response when port is closed with DEST-IP and we get
! Xerror response.
root@master:/home/vagrant# traceroute -n -q 1 -T -p 443 192.168.123.124
traceroute to 192.168.123.124 (192.168.123.124), 30 hops max, 60 byte packets
1 192.168.123.124 0.370 ms! XUDP
When UDP + port is specified, only 0 bytes of data are sent.
- When port is listened to by DEST-IP, the data is received and there is no response, so it becomes ***.
root@master:/home/vagrant# traceroute -n -q 1 -U -p 161 192.168.123.124
traceroute to 192.168.123.124 (192.168.123.124), 30 hops max, 60 byte packets
1 *- When PORT is closed with DEST-IP, in response we should be receive
! X.
root@master:/home/vagrant# traceroute -n -q 1 -U -p 8085 192.168.123.124
traceroute to 192.168.123.124 (192.168.123.124), 30 hops max, 60 byte packets
1 192.168.123.124 0.353 ms! XOptions in traceroute
- no DNS hostname resolve :
-n - nqueries per hop: -
q
