Solved

Tracert output

Posted on 2011-03-24
5
572 Views
Last Modified: 2012-05-11
I'm in the process of migrating from an old PIX 6.3(3) to a Forefront 2010 server. During this process I'll have both systems running side by side for a while.
I want to verify that I've successfully changed the gateway for a subset of my systems. The PIX doesn't show up as a hop in tracert:

tracert 4.2.2.2
Tracing route to vnsc-bak.sys.gtei.net [4.2.2.2]
over a maximum of 30 hops:
  1    <1 ms    <1 ms    <1 ms  192.168.20.1
(PIX should be here, 192.168.250.1)
  2     1 ms    <1 ms    <1 ms  65.X.X.105 - the IP of our ISP's gateway

How can I easily distinguish the route for this point using tracert? I'm hoping to either get the PIX to be included in the output or a sample of what to look for for traffic successfully routed to  Forefront.
0
Comment
Question by:timbrigham
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
5 Comments
 
LVL 33

Accepted Solution

by:
MikeKane earned 500 total points
ID: 35209611
You are going to want this doc:
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a0080094e8a.shtml

Near the bottom it shows the commands to enable the PIX to 'show up' in a tracert.    However, You'll need to upgrade to a new OS for that....   If that is do-able, then this should be the solution.  

Otherwise, I don't think it will be supported in the pix.  


What kind of device is at 192.168.20.1?   Is it cisco?   If so, you can do something like a 'show exact route' to help trace the path.
0
 
LVL 2

Expert Comment

by:ivarson408
ID: 35209617
192.168.20.1 appears to be a router or gateway? This is routing it to the next spot so you should check the routing config on that device.
0
 
LVL 1

Author Comment

by:timbrigham
ID: 35210079
Thanks gentlemen.

192.168.20.1 is an aging Cisco 2811. The PIX is long out of coverage so upgrading isn't an option.
It looks like "sho ip cef exact-route 192.168.20.254 4.2.2.2" should do what I need.

I'm using a route-map applied to a couple interfaces to collect the subset of computers I want to test with. Can I expect the output of this command will accurately reflect the route map?
0
 
LVL 33

Expert Comment

by:MikeKane
ID: 35210314
I would 'assume' yes.      I've never seen the 'show exact route' to give an incorrect path that differed from the config.    


0
 
LVL 1

Author Closing Comment

by:timbrigham
ID: 35210327
Many thanks.
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you have an ASA5510 then this sort of thing would be better handled with a CSC Module, however on an ASA5505 thats not an option, and if you want to throw in a quick solution to stop your staff going to facebook during work time, then this is the…
Being a system administrator some time we require to do things remotely, one of them is installing software. Here I am going to tell you how to install software through wmic (Windows management instrument console). I am not at all saying that this i…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question