Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: 'nmap -S <src_addr>' does not use 'iproute2' alternate routing table

From: starlight.2012q3 () binnacle cx
Date: Tue, 11 Sep 2012 13:38:10 -0400
At 07:13 PM 9/10/2012 -0700, David Fifield wrote:

Please try this patch, with both --send-ip and --send-eth.
The patch causes route_dst_netlink to add extra specifiers
for the source address.


Cool.  It works as desired with --send-eth, but
not with --send-ip.  The commands used (carefully
pasted) were

   nmap -e eth4 -S 172.29.86.4 --send-eth -Pn 69.160.42.66

and

   nmap -e eth4 -S 172.29.86.4 --send-ip -Pn 69.160.42.66

(Destination address is spammer IP)

When the above lines have --route_dst and --iflist
added the results look the same as before.  I see
in the patch that 'nmap' is making use of a Linux
kernel routing facility when actually sending
packets.

With --send-ip traffic is sent out 'eth5' and
is directed to the MAC of the 172.29.79.2
router address for that link.

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: