linux: traceroute send operation not permitted for remote server

When I try to traceroute to a remote ip, I get send: Operation not permitted When I stop iptables, traceroute works fine. So, I assume I need some ip rule for send. What would that rule be?

I did find a solution here http://forums.fedoraforum.org/showthread.php?t=112516, and I add it to my iptables, restart it, but then after a while CSF seems to block send again. Something overwrites that rule.


Solution 1:

Found the solution:

Do you have CSF installed? If yes, open the config page for CSF and search the page for traceroute. There you'll see this message:

# Allow outgoing UDP ports

# To allow outgoing traceroute add 33434:33523 to this list