Prevent Traceroute on inline devices using IPTables.

Does exactly what it says on the Tin - Prevents Traceroute by incrementing the TTL of each default traceroute packet that comes through the specified interface.

/usr/local/sbin/iptables -t mangle -A PREROUTING -p TCP --dport 33434:33542 -j \
TTL --ttl-inc 1

It’s not foolproof by far!

Leave a Comment

Please note: Comment moderation is enabled and may delay your comment. There is no need to resubmit your comment.

April 1st, 2007
By Joe | filed under Firewall, Network |