11-23-2015 08:23 AM - edited 03-11-2019 11:56 PM
Hi all,
I'm trying to traceroute from Windows PC through CISCO ASA IOS 9.1(1) - Multiple Contexts
When I'm using PAT, traceroute doesn't work
When I'm using static NAT 1 to 1, traceroute works!
I can't figured out what can be. Please help.
11-23-2015 10:50 AM
Hi,
Ideally it should work but as you have mentioned it is gaining in your setup so you can try following :
>> try enabling/ disabling ICMP inspection for traffic and check if it helps.
>> apply captures for ICMP and check if you are getting ICMP error messages from intermediate devices.
>> Are you using UDP based tracroute?
Thanks,
Rishabh Seth
PS : Rate if it helps.
11-23-2015 10:54 AM
Hi Seth,
ICMP inspection is enabled. Even when I disable it, traceroute with PAT and NAT doens't work. When enabled, only with static NAT works.
On windows machine I've captured the packtes, but nothing abnormal. I'll capture the packtes from intermediate devices
I'm using ICMP based traceroute
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Log in to Community
