trace route on a specific port

caibbor · 12-04-2009, 01:11 PM

say I've got a few systems which forward ports to one another all over the place, and somewhere along the line a port forward fails. I want to trace the route of a connection on a specific port to see where the connection hits a wall, to see what system is causing the problem.

any way to do this?

I've tried `tracetoure -T -p <port>` but it doesn't output anything about the ports it hits, stops when it hits the address I supplied even though it is forwarded elsewhere, and there doesn't seem to be a verbose mode.

interstingly, if I specify a different source port via the '-s' option, the trace keeps hopping to * * * * and never get anywhere (at least to 27 hops then I CTRL+C)

rweaver · 12-04-2009, 03:02 PM

I've never used tracetoure, however you can use traceproto with the destination port option and it should provide the information you need.

caibbor · 12-04-2009, 04:25 PM

Quote:

Originally Posted by rweaver

I've never used tracetoure, however you can use traceproto with the destination port option and it should provide the information you need.

thanks. however the traces from both tcptraceroute and traceproto (tcp) both just get no response, which is weird. there is definitely a port forwarded to a service on another machine, an http server, and I can load it in a browser.

the machine I'm traceing is also got a local sshd running and working well, and tcp'ing to that port also results in no response with these tools.

er? why?

I"m even doing these from within the same network, so no NAT is happening.

nimnull22 · 12-04-2009, 04:47 PM

Quote:

Originally Posted by caibbor

I've tried `tracetoure -T -p <port>` but it doesn't output anything about the ports it hits

-T = Use TCP instead of UDP packets when probing the route.

-p port = Specifies the UDP destination port base traceroute will use.

I don't think you know:
1. what are you doing
2. why you are doing this
3. what do you exactly need.

So please read carefully "man traceroute" .

caibbor · 12-05-2009, 01:20 PM

Quote:

Originally Posted by nimnull22

-T = Use TCP instead of UDP packets when probing the route.

-p port = Specifies the UDP destination port base traceroute will use.

I don't think you know:
1. what are you doing
2. why you are doing this
3. what do you exactly need.

So please read carefully "man traceroute" .

no, sir, I think YOU don't understand what I'm trying to do. I need to know what system is accepting (or traveling through) my TCP (hence -T) connection on port 443 (hence -p). it would seem logical that -p would use TCP instead of UDP with the -T option. that is, after all, the point.

imitheos · 12-05-2009, 01:43 PM

Quote:

Originally Posted by caibbor

no, sir, I think YOU don't understand what I'm trying to do. I need to know what system is accepting (or traveling through) my TCP (hence -T) connection on port 443 (hence -p). it would seem logical that -p would use TCP instead of UDP with the -T option. that is, after all, the point.

I may be wrong, but isn't tcptraceroute what you need ?

The -p of traceroute isn't about testing ports. Tcptraceroute sends
TCP SYN packets to a specific port so it can do what you want.

rweaver · 12-07-2009, 10:23 AM

Quote:

Originally Posted by caibbor

thanks. however the traces from both tcptraceroute and traceproto (tcp) both just get no response, which is weird. there is definitely a port forwarded to a service on another machine, an http server, and I can load it in a browser.

the machine I'm traceing is also got a local sshd running and working well, and tcp'ing to that port also results in no response with these tools.

er? why?

I"m even doing these from within the same network, so no NAT is happening.

It's possible one of the redirects in the chain isn't a network level redirect and is a webserver perm redirect or something similar.