analysis of icmp
Analysing ICMP traffic ist important, because you can see, what is going wrong in the network:
Examples:
- fragmentation Problems
- network or port unreachable
- routing redirects
 

Sniffed icmp packets
 
Sample 1:Port Unreachable

Text
 
Sample 2:Host Unreachable

Text
 
Sample 3:Net Unreachable

Text
 
Sample 4:Fragmentaion

Text
 

Usefull ICMP References
www.iana.org/assignments/icmp-parameters

Usefull ICMP Filters
icmp and not (icmp[0]=0x08 or icmp[0]=0x00)sniff all icmp , but not icmp request and replay

Usefull ICMP Scripts
icmppacket.sh is a shell script with HPING , for generating all type of ICMP Packets.
 
root@bitmonsterli # ./icmppacket.sh
	
 -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
 -  icmppacket.sh  packet creation enviroment          -
 -  christoph Weber                                    -
 -  (c) packetlevel.ch                                 -
 -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

   Usage : ./icmppacket.sh   [nb] [ttl]
 
icmppacket.sh

(c) 2008 by packetlevel.ch / last update: 17.06.2008