Nmap Development mailing list archives
Re: Question about nmap (nping) and Record Route option
From: David Fifield <david () bamsoftware com>
Date: Fri, 26 Jul 2013 03:24:27 -0700
On Sun, Jun 16, 2013 at 11:17:29PM +0300, Kevin Wilson wrote:
Hello, following: http://seclists.org/nmap-dev/2006/q3/52 I tried this: nping --ip-options "R" scanme.insecure.org And I got: Starting Nping 0.6.25 ( http://nmap.org/nping ) at 2013-06-17 02:05 IDT SENT (0.1653s) ICMP 192.168.2.10 > 74.207.244.221 Echo request (type=8/code=0) ttl=64 id=52304 iplen=68 ipopts={ NOP RR{#0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0}} RCVD (0.4292s) ICMP 74.207.244.221 > 192.168.2.10 Echo reply (type=0/code=0) ttl=52 id=45126 iplen=68 ipopts={ RR{ 79.177.1.134 212.179.37.1 212.179.160.186 62.219.189.202 80.81.192.191 184.105.213.161 184.105.213.94 184.105.213.178 184.105.222.90#} EOL} SENT (1.1656s) ICMP 192.168.2.10 > 74.207.244.221 Echo request (type=8/code=0) ttl=64 id=52304 iplen=68 ipopts={ NOP RR{#0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0}} SENT (2.1667s) ICMP 192.168.2.10 > 74.207.244.221 Echo request (type=8/code=0) ttl=64 id=52304 iplen=68 ipopts={ NOP RR{#0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0}} RCVD (2.4270s) ICMP 74.207.244.221 > 192.168.2.10 Echo reply (type=0/code=0) ttl=52 id=45127 iplen=68 ipopts={ RR{ 79.177.1.134 212.179.37.1 212.179.160.186 62.219.189.202 80.81.192.191 184.105.213.161 184.105.213.94 184.105.213.178 184.105.222.90#} EOL} SENT (3.1670s) ICMP 192.168.2.10 > 74.207.244.221 Echo request (type=8/code=0) ttl=64 id=52304 iplen=68 ipopts={ NOP RR{#0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0}} SENT (4.1676s) ICMP 192.168.2.10 > 74.207.244.221 Echo request (type=8/code=0) ttl=64 id=52304 iplen=68 ipopts={ NOP RR{#0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0}} Max rtt: 263.812ms | Min rtt: 260.246ms | Avg rtt: 262.029ms Raw packets sent: 5 (340B) | Rcvd: 2 (136B) | Lost: 3 (60.00%) Tx time: 4.00356s | Tx bytes/s: 84.92 | Tx pkts/s: 1.25 Rx time: 5.00442s | Rx bytes/s: 27.18 | Rx pkts/s: 0.40 Nping done: 1 IP address pinged in 5.18 seconds It seems that in this example , nping did its job great, as I see IP addresses in the echo reply. A few minutes I tried again: nping --ip-options "R" scanme.insecure.org This time, as you can see below, no results! (I mean no Echo reply at all).
I'm afraid I can't reproduce this. I don't know why the record route option in particular would cause any change in behavior like this. How long does it take before Nping starts receiving responses again? What happens if you use "-c 0"; to the responses stop coming after a while? David Fifield _______________________________________________ Sent through the dev mailing list http://nmap.org/mailman/listinfo/dev Archived at http://seclists.org/nmap-dev/
Current thread:
- Re: Question about nmap (nping) and Record Route option David Fifield (Jul 26)