Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

how to trace the icmp request on receiving machine

Status
Not open for further replies.
summerdike

summerdike

Instructor
Oct 24, 2003
217
EU
How can I find out on a PC that is being pinged by another machine whether de icmp request is received or not?


(The icmp request sender does NOT receive reply, but maybe the icmp reply sender sends it to th "wrong" PC.).


______________________________
"Reload and Restart Requested
System Initiated"
 
Sort by date Sort by votes
Use Ethereal on the target machine. (
Start Ethereal.
In the menu, select "Capture" and then select "Options".
in the Capture section:
Select the right Interface.
Enter behind Capture Filter: icmp
Hit start.
A small window appears showing you the captured packets per protocol. All should remail zero at this point.

Do your ping test from one or more machines.

Stop the capture on the target machine.
As you will see the ICMP bar was filled.

Review the trace you made.

Tell us what you found out.
 
Upvote 0 Downvote
I als thought about using Ethereal.
But as it is a domain server (in fact domain controller & router) that is involved I would rather not install network utilities on it like Ethereal.
So in fact I was looking for a lighter tool, but in the end Ethereal would surely do the job.

I first tried pinging from the router/server back to the pc.
Pinging (from server) did NOT return a reply from the PC.
So even if the ICMP request (ping) from the PC would reach the server, the server would not reply. I solved this by stating a static route on the server.
That solved the problem.





______________________________
"Reload and Restart Requested
System Initiated"
 
Upvote 0 Downvote
Sounds like your server is equipped with two NIC's.
Are they teamed?
Are the Default Gateway and the Subnetmasks correct on both NIC?

You can use a SPAN port on your switch and use Ethereal on a laptop to investigate the Ping problem.

Cisco:
Show monitor
config terminal
monitor session 1 destination interface 0/24
monitor session 1 source interface 0/2

This copies the traffic from int0/2 (your server on interface 2) to int0/24 (your laptop with ethereal on interface 24).
Use a Cisco Serial config cable because your laptop on interface 24 cannot use the network in a normal way because it is a destination port. Telnet and Ping do not work until the monitor sesson is ended.

To end monitoring:
config terminal
no monitor session 1 destination interface 0/24
no monitor session 1 source interface 0/2

You can also use packetyzer (This is the Ethereal engine with a Windows GUI, and some nifty features.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

TTjames
  • Locked
  • Question
NetSaint no longer online
Replies
0
Views
116
TTjames
TTjames
Oleg11
  • Locked
  • Question
remote access to the computer
Replies
0
Views
112
Oleg11
Oleg11
dustbuster
  • Locked
  • Question
How to sever client connection based on timeout or bandwidth
Replies
0
Views
119
dustbuster
dustbuster
shedlord2
  • Locked
  • Question
Best (simple) sniffer to use for detecting illegal filesharing on a network?
Replies
1
Views
145
fortunat
fortunat
HaierIT
  • Locked
  • Question
Monitor Bandwidth on Point-to-Point
Replies
1
Views
121
fortunat
fortunat

Part and Inventory Search

Sponsor

Back
Top