[3831] in North American Network Operators' Group
Re: Access to the Internic Blocked
daemon@ATHENA.MIT.EDU (Vadim Antonov)
Thu Aug 22 22:34:38 1996
Date: Thu, 22 Aug 1996 19:10:21 -0700
From: Vadim Antonov <avg@quake.net>
To: jhawk@bbnplanet.com, vaf@WR.BBNPLANET.COM
Cc: gih@aarnet.edu.au, nanog@merit.edu
Vince Fuller wrote:
>You'll also need to pursuade your router vendor to violate the ICMP spec,
>which says that ICMP error messages (i.e. TTL exceeded) are never sent in
>response to ICMP messages...
>I suspect that this restriction is precisely the reason that "traceroute" uses
>high-port UDP packets.
That is correct. (There are other reasons, too).
However, sending ICMP errors in response on ICMP ECHO Request is safe.
Unlike sending random UDP messages to random ports.
Maybe ICMP specs should be updated and this is the rare case when
Microsoft got it right (in spirit, if not letter).
--vadim
