Replacing the source IP address in outbound ICMP "Time Exceeded" packets on Cisco routers

        Kind of an odd question, I know.
Is it possible to replace the source IP address in outbound ICMP "Time Exceeded" packets on a Cisco 2911 router? I have multiple IPs bound to the primary interface, as well as IPs on the secondary interface that act as gateway IPs for the local network that the router also responds to on the Internet. What I'd like to do is replace the source IP address in outbound ICMP "Time Exceeded" packets so that, when a traceroute is conducted, the IP address I wish to appear to the Internet as (a secondary interface's IP address) is shown. For instance, when a traceroute is done to any machine on our network, the IP 1.2.3.4 is shown as one of the hops as that's the primary GigabitEthernet0/0 interface's IP address. I would like 2.3.4.5 to show instead (an IP assigned to GigabitEthernet0/1 and reachable from the Internet). The only way I can think of doing this is to alter the IP address in the outbound packet. Does Cisco have this functionality? Is it possible to alter that IP in transit, for a particular type of packet? Thank you in advance!

Leave Your Comment

Leave a Reply