Hi,
I have a firewall filter to block certain addresses being seen by the customer and it works great apart from on issue I cannot resolve...
From a customer host address (let's say a laptop), I complete a traceroute (tracert) to 8.8.8.8. The problem is that instead of the customer not seeing the addresses, they will get a timeout.....
Question:
Is there a way that I can make it so the customer just sees the next-hop I want them to see rather than timeouts?
Here is an example of what I mean:
CPE = 192.168.1.1/30
NTE Ge-0/0/0 = 192.168.1.2/30
NTE Ge-0/0/7.100 = 10.10.10.1/30
MX240 Core XE-1/2/4.100 = 10.10.10.2/30
MX240 Core XE-1/2/5 = Upstream
Upstream ISP = 80.80.80.1/30
I want the laptop to see only the CPE LAN Gateway and the next-hop as the upstream ISP address of 80.80.80.1 .... I can do this already but the hops in between show as * * * Request Timed Out
It's the request timed out section I do not want the customer to see. Rather, just the next-hop of Upstream ISP.