ASA and traceroute

By default ASA does not decrease the TTL field, hence is not visible in traceroute output. This is how to change this behaviour :

asa# conf t
asa(config)# icmp unreachable rate-limit 10 burst-size 5
asa(config)# policy-map global_policy
asa(config-pmap)#  class class-default
asa(config-pmap-c)# set connection decrement-ttl

The result:

asa# sh run
. . .
icmp unreachable rate-limit 10 burst-size 5
. . .
policy-map global_policy
 class inspection_default
  inspect dns preset_dns_map
  inspect ftp
  . . .
  inspect icmp
  inspect sunrpc

 class class-default
  set connection decrement-ttl

service-policy global_policy global
. . .


DNS, IP, AS, whois etc testers

  • Squish DNS (A, SOA, CNAME, NS, PTR, AAAA. ANY) tester
  • What’s my DNS DNS propagation tester
  • DNS-OARC Web-based DNS randomness test
  • Robtex RBL Realtime Block List, Domain Name Server records, IP Reverse DNS, C-Network, Domain
  • Whois, Route, AS Analysis, DNS graphs
  • DNSstuff IP, whois, country IP, traceroute, VectorTrace, DNS traversal, Speed tests, HTML validator
  • What’s my IP IP, DNS, whois, traceroute testers, port scanner
  • w3dt DNS lookup, DNS traversal, PortScan, trace route, RBL check, MTU route, NTP test, remote process list
  • Into DNS