Exam 70-462, Tracert And Traceroute in Linux

Although tracert and traceroute on LINXU are both traced by route, the data types of the two detection methods and probes are different. By default, traceroute sends a UDP datagram to a port (greater than 30000) of the destination address, and tracert sends an ICMP request to the destination address to echo the packet.

Conclusion: The reason for the above problem is probably that the destination server or router has released the ICMP package. However, the UDP packets are filtered, or the ports are restricted

Tracert is a route-tracking utility that determines the path taken by an IP datagram to access a destination. The Tracert command to use the IP Time to Live (TTL) field and ICMP error messages to determine the route from one host to another on the network.

Working principle and process:
The Tracert Diagnostics determines the route to take the destination by sending an Internet Control Message Protocol (ICMP) response packet with a different IP Time to Live (TTL) value to the destination. Each router on the path is required to decrement the TTL on the packet before forwarding the packet at least. When the TTL on the packet is reduced to 0, the router should send a message "ICMP has timed out" back to the source system.

Tracert first sends a response packet with a TTL of 1, and increments the TTL by 1 in each subsequent transmission until the target response or TTL reaches a maximum value to determine the route. The route is determined by checking the "ICMP has timed out" message sent back by the intermediate router. Some routers drop TTL expired packets without asking, which is not visible in the Tracert utility.

The Tracert command prints out the list of near-end router interfaces in the path that return the "ICMP Timed Out" message. If you use the -d option, the Tracert utility does not query DNS on every IP address.