Why am I able to ping but not do tracepath over my Layer 3 VPN?

Our VPN expert explains why a Layer 3 VPN can ping but not do a tracepath from the client in this response.

Rainer Enders

I am running a Layer 3 (L3) VPN between two edge routers and have connected one router to a Linux host client. I tried to ping an IP address from the client present on the other router that was learnt via my Border Gateway Protocol (BGP) VPN. It's pinging, but I am unable to do tracepath from the client. I get a "No Reply" after it goes to the interface of the router connected to the client. Why is this happening?

Have you tried using traceroute instead of tracepath? Tracepath uses a range of User Datagram Protocol (UDP) ports, one or many of which might be blocked at the firewall. I suspect this is what’s happening, although I recommend further testing and analysis to figure out the root cause. Also, sometimes tools with lower privilege levels have limitations. For your situation, I suggest trying traceroute and also verifying the firewall protocols. Given what you’ve described, the IP routing appears to be functional.

View other responses to this question on the IT Knowledge Exchange (please note: SearchEnterpriseWAN.com and IT Knowledge Exchange registration are the same): Able to ping L3 VPN but unable to do tracepath

Email your VPN-related questions to editor@searchenterprisewan.com

This was last published in March 2012

Dig Deeper on Network Security

Related Q&A from Rainer Enders

Integrated mobile application, device management best approach

Administrators don't have to worry about interoperability; integrated mobile application and device management is the best approach. Continue Reading

Why do I need to manage my VPN client software?

Ensuring that the client software itself is up to date is just one of many reasons why it's critical to oversee VPN clients. Continue Reading

Maintaining mobile device security: How to prevent user breaches

To ensure mobile device security, VPN expert Rainer Enders explains that it is crucial to monitor changed states and block software modifications. Continue Reading

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

Meet all of our Networking experts

View all Networking questions and answers

SearchUnifiedCommunications

Cisco Webex Edge for Devices links on-prem endpoints to cloud

With Webex Edge for Devices, companies can connect on-premises video endpoints to the cloud, unlocking features such as the Webex...

3 benefits of unified communications for small business

Small businesses that adopt unified communications can expect to improve employee engagement, reduce costs and consolidate ...

Launch of Microsoft Teams, consumer Skype integration set for Q1

Integration between Microsoft Teams and consumer Skype is now scheduled to launch sometime in the first quarter. Previously, the ...

SearchMobileComputing

5G connectivity won't be enterprise-ready in 2020

Despite hype and new device announcements, experts expect 5G will take time to catch on in the enterprise. The tech has potential...

Acer Spin 5, TravelMate P6 preview: Great specs, good price

At CES 2020, the Acer Spin 5 and Acer TravelMate P6 and P2 series headlined the vendor's appearance. Acer focused its upgrades on...

Dell Latitude 9510 and XPS 13 preview: Best in business

The Dell Latitude 9510 and XPS 13 unveiled at CES 2020 redefine the business laptop, touting features like 5G, AI, impossibly ...

SearchDataCenter

Organizations try to predict the effect of 5G infrastructure

With more 5G and IoT devices emerging, admins must prepare their data centers to support low-latency apps and edge computing with...

Top infrastructure and operations technology myths of 2019

Admins are consistently evaluating technology to improve I&O efficiency. Cost, integration and business goals are key components ...

Improve efficiency with server energy consumption tools

Deciding what servers are most efficient for your infrastructure requires research. Hardware-level certifications and web-based ...

SearchITChannel

Cloud consultants set for massive workload shift to cloud

2020 bodes well for cloud adoption, according to AllCloud. On top of moving more workloads to cloud, customers may be eying IT ...

SMBs grappling with digital transformation initiatives

SMBs are eager to embrace digital transformation, but many businesses encounter challenges when trying to implement new ...

Citrix's performance analytics service gets granular

Citrix says its new performance analytics service for its Virtual Apps and Desktops platform will better identify the root cause ...

Why am I able to ping but not do tracepath over my Layer 3 VPN?

Our VPN expert explains why a Layer 3 VPN can ping but not do a tracepath from the client in this response.

Dig Deeper on Network Security

How to perform packet loss tests and how they work

How to use traceroute to troubleshoot network problems

Handy PING Sweep Tool

How can I troubleshoot AWS connectivity problems?

Related Q&A from Rainer Enders

Integrated mobile application, device management best approach

Why do I need to manage my VPN client software?

Maintaining mobile device security: How to prevent user breaches

Have a question for an expert?

Start the conversation

0 comments

Please create a username to comment.

-ADS BY GOOGLE

SearchUnifiedCommunications

Cisco Webex Edge for Devices links on-prem endpoints to cloud

3 benefits of unified communications for small business

Launch of Microsoft Teams, consumer Skype integration set for Q1

SearchMobileComputing

5G connectivity won't be enterprise-ready in 2020

Acer Spin 5, TravelMate P6 preview: Great specs, good price

Dell Latitude 9510 and XPS 13 preview: Best in business

SearchDataCenter

Organizations try to predict the effect of 5G infrastructure

Top infrastructure and operations technology myths of 2019

Improve efficiency with server energy consumption tools

SearchITChannel

Cloud consultants set for massive workload shift to cloud

SMBs grappling with digital transformation initiatives

Citrix's performance analytics service gets granular

Related Resources

Dig Deeper on Network Security

How to perform packet loss tests and how they work

How to use traceroute to troubleshoot network problems

Handy PING Sweep Tool

How can I troubleshoot AWS connectivity problems?

Related Q&A from Rainer Enders

Have a question for an expert?

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.