![]() ![]() What type of internet connection do you have i.e. ![]() You have a vlan 10 on bridge, what is this vlan to be used for? => Was starting to create a VLAN but I havent finished, then it is linked to nothing for the moment, but I just removed it to be sureĪdd interface=bridge name=vlan10 vlan-id=10 That's also one of reasons why blocking ICMP protocol in general is a bad thing.ĭisable "allow remote requests" on DNS unless you add a firewall input rule to drop port 53 from wan side => Ok, done ![]() When a certain router (or firewall) drops packets (as does ROS when firewall filter triggers drop action), traceroute obviously won't get any reply any more regardless of TTL value. Which obviously doesn't mean that those routers don't route packets with TTL larger than 0. Some routers don't return the requested packet hence empty line in traceroute. The router is supposed to return "ICMP TIME_EXCEEDED" packet to the originating host of dropped packet). When looking at traceroute results, one has to keep in mind the way traceroute works: traceroute uses packets with low TTL to trigger required functionality of any router (which is to decrease TTL by one on every passing packet and drop any packet reaching TTL value 0 - that's mechanism to prevent routing loops from clogging the network. The first hop missing in all your traceroures is the first ISP's access router. Dynamic servers are pushed by ISP via whatever dynamic protocol for address assignment used (probably either DHCP client or PPPoE) and you can unclick the field saying that you want to use dynamic DNS servers in appropriate configuration section. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
January 2023
Categories |