linux: traceroute send operation not permitted for remote server

networking linux firewall iptables

When I try to traceroute to a remote ip, I get send: Operation not permitted When I stop iptables, traceroute works fine. So, I assume I need some ip rule for send. What would that rule be?

I did find a solution here http://forums.fedoraforum.org/showthread.php?t=112516, and I add it to my iptables, restart it, but then after a while CSF seems to block send again. Something overwrites that rule.


Solution 1:

Found the solution:

Do you have CSF installed? If yes, open the config page for CSF and search the page for traceroute. There you'll see this message:

# Allow outgoing UDP ports

# To allow outgoing traceroute add 33434:33523 to this list

Related

Bash script to check if a public HTTPS site is up [closed]
Assigning a fixed IP address to a machine in a DHCP network
AWS recommends 54 t2.nano EC2 instances instead of one m5.xlarge
What is the best enterprise virus-scanning system? [closed]
Why is it bad to build RPMs as root?
Example of live site with trusted, signed but revoked certificate?
Sending mail from command line if body not empty
Disable right click file printing in windows?
Temporary membership to AD group
Upgrading RAID controller to 4kn - do I have to reinitialize the array to use 4kn?
What mailer does cron use to send mail?
Why do you need IPv6 Neighbor Solicitation to get the MAC address?