Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1830
Views
0
Helpful
2
Replies

Enable Traceroute on Cisco ASA.

nilesh.dubey
Level 1
Level 1

‎04-29-2016 03:29 AM - edited ‎02-21-2020 05:48 AM

Hi,

Is there any way to enable traceroute on Cisco ASA. firmware version is 7.1.

Thanks,

Nilesh 

0 Helpful
2 Replies 2

Philip D'Ath
VIP Alumni
VIP Alumni

‎04-30-2016 01:30 AM

There are two ways of doing a traceroute.  This will enable one method.

policy-map global_policy
 class inspection_default
   ...
   inspect icmp 
   inspect icmp error 
   ...

...
service-policy global_policy global
0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame

‎04-30-2016 06:35 AM

In addition to what Philip posted...

If you want the ASA to appear as a hop in the traceroute path, you also need to tell it to decrement the TTL. By default it will not do so.

ciscoasa(config)# policy-map global_policy
ciscoasa(config-pmap)# class class-default
ciscoasa(config-pmap-c)# set connection decrement-ttl
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card