Question about D-Link NetDefend DFL-700 Firewall
I have a machine in my DMZ on which I want to be able to use traceroute command. However, all connections time out. How can I allow traceroute operations to work?
You have to allow the following:
ICMP type 8 (Echo) from your DMZ to the Internet (a.k.a outbound)
ICMP type 0 (Echo reply) from the Internet to your DMZ (a.k.a inbound)
This will be done by adding the rules in the firewall section of your DFL-700.
Posted on Mar 14, 2008
Tips for a great answer:
the whether the security level for DMZ and outside interface, If DMZ is high
security level. Please do the NAT configuration
· If it's having the same security level. Please issue the command "same-security-traffic permit inter-interface "in the global config mode.
Mar 01, 2011 | Cisco ASA 5505 Firewall
Jul 27, 2010 | Cisco ASA 5520 Firewall
Jan 26, 2010 | Fortinet, Inc. FortiGate 60: FortiGate Pro...
Mar 09, 2009 | Cisco PIX 515E Firewall
Feb 28, 2009 | Cisco PIX Firewall 506
Oct 10, 2008 | Juniper Networks SECURE SERVICES GATEWAY...
Jan 03, 2008 | NetGear ProSafe FVS338 (FVS338NA) Firewall
Oct 19, 2007 | Cyberguard SG300 (00852503000366) Firewall
Aug 09, 2007 | SonicWALL PRO 300 Firewall
792 people viewed this question
Usually answered in minutes!