Hi Folks;
For a long time now something about my TMG 2010 install has bugged me - whenever I do a traceroute the firewall never shows up in the list - ie;
C:\>tracert ibm.com
Tracing route to ibm.com [129.42.38.1]
over a maximum of 30 hops:
1 * * * Request timed out.
2 24 ms 11 ms 28 ms x.x.x
3 25 ms 12 ms 10 ms x.x.x
4 15 ms 16 ms 26 ms x.x.x
5 20 ms 19 ms 36 ms x.x.x
6 29 ms 36 ms 31 ms x.x.x
So, the first hop should be my firewall but it never shows up.
As a guess, I created a rule for ICMP from internal to all networks (and local host) but that didn't fix it.
It's not a big deal but it would be nice if the first hop (the tmg 2010 machine) actually showed up.
This is the log file showing all denied requests from that traceroute machine;
UDP 60133 Firewall 192.168.1.1 0xc0040050 FWX_E_TCPIP_DROP_IP_NOT_LOCALLY_DESTINED 239.255.255.250
ICMP 2048 Firewall 192.168.1.1 0xc004005a FWX_E_TCPIP_DROP_IP_HOP_LIMIT_EXCEEDED 129.42.38.1 External 0 PING Denied Connection
ICMP 2048 Firewall 192.168.1.1 0xc004005a FWX_E_TCPIP_DROP_IP_HOP_LIMIT_EXCEEDED 129.42.38.1 External 0 PING Denied Connection
ICMP 2048 Firewall 192.168.1.1 0xc004005a FWX_E_TCPIP_DROP_IP_HOP_LIMIT_EXCEEDED 129.42.38.1 External 0 PING Denied Connection