linux: traceroute send operation not permitted for remote server
When I try to traceroute to a remote ip, I get
send: Operation not permitted
When I stop iptables, traceroute works fine. So, I assume I need some ip rule for send. What would that rule be?
I did find a solution here http://forums.fedoraforum.org/showthread.php?t=112516, and I add it to my iptables, restart it, but then after a while CSF seems to block send again. Something overwrites that rule.
Solution 1:
Found the solution:
Do you have CSF installed? If yes, open the config page for CSF and search the page for traceroute. There you'll see this message:
# Allow outgoing UDP ports
# To allow outgoing traceroute add 33434:33523 to this list