ETrace is a configurable static port network tracing tool, similar to traceroute, but supporting ICMP, TCP, UDP, etc.
Version: 1.1ETrace is a configurable static port network tracing tool, similar to traceroute, but supporting ICMP, TCP, UDP and other IP protocols.
Operating System: Linux
etrace [ -BbCcnv ] [ -p profile ] [ -F config ] [ -i interface ] [ -I icmp-type ] [ -T port ] [ -U port ] [ -P protocol ] [ -r probe-count ] [ -t timeout ] [ -1 hop ] [ -h hop ] [ -m hop ] [ -A address ] [ -s port ] [ -f flags ] [ -d data ] [ -D data-file ] [ -R count ] [ -q seq] [ -w window ] target [...]
etrace has a wealth of options ranging in function from controlling output to the detailed construction of trace packets.
A profile is a pre-configured list of options stored in a shared, or user specific configuration file. By defining profiles, complex etrace option sets can be easily accessed with a single command line option.
Specify a profile.
Clear the current list of probes. This option can be used to allow a profile to inherit options from another profile, but specify it's own list of probes.
Specify an alternative profiles file.
Specify interface. If unspecified, etrace will examine the routing table and select the most appropriate interface for each target address.
Put in interface into promiscuous mode. As this option increases the load on the system in general, it should only be used if spoofing of source packets address is enabled with the "-A" option.
Trace Type Options
Specify an ICMP trace and the packet type to use. ICMP traces may use Echo (E or P), Timestamp (T or S), Netmask (N or M) or Info (I). The default trace probe is an ICMP Echo.
Specify a specific hop to investigate.
Specify the maximum number of hops.
Set the maximum number of probes to send per hop. The default is 3.
Set the maximum amount of time, in milli-seconds, to wait for a response to a probe. The default is 3000 (three seconds).
Packet Construction Options
Specify the source IP address of generated packets.
Set the source port of the generated probe packets. If unspecified, etrace uses a random high port.
Specify TCP and/or IP flags. Takes a comma delimitered list of any of the following flags: RF, DF, MF, FIN, SYN, RST, PSH, ACK, URG, ECE, CWR (Default: SYN)
Specify the data content of generated probe packets. Standard meta-characters are recognised (e.g. "nt") as are binary values given in octal (e.g. "00x00");
Load the data content of the generated probe packets from the specified file. Filenames beginning with '@' a loaded from the etrace shared data directory (usually /usr/local/share/etrace). etrace currently ships with the following predfined packet data files: dns, ike.
Fill the data content of the generated probe packets with the specified number of random bytes.
Generate and send probe packets with bad checksums.
Specify the TCP sequence number.
Specify the TCP window size.
Increase output verbosity.
Enable debugging output.
Disable name resolution.
Launches a trace ICMP Echo, the default, trace to www.sample.com. Specifiying the options "-I E" whould accomplish the same results.
etrace -T 80 www.sample.com
Similar to the previous example, except the trace is performed on TCP port 80.
etrace --udp 53 --data-file @dns ns.sample.com
Starts are trace to ns.sample.com on UDP port 53 with the trace packets containing data loaded from the file /usr/local/share/etrace/dns (a file supplied with etrace that contains a simple dns request to resolve 127.0.0.1).
etrace -p dns -p fast ns.sample.com
The default profiles shipped with etrace include "dns" (which equates to the options shown in the previous example) and "fast" (which decreases both timeouts and the number of probes sent for each hop, as well as disabling name resolution). Profiles are stackable, with latter options overriding those specified in earlier profiles.