nmap only one for four?
Results 1 to 3 of 3

Thread: nmap only one for four?

  1. #1
    Senior Member
    Join Date
    Jan 2003

    nmap only one for four?

    So I wanted to do some testing yesterday.

    I set the firewall to leave four machines available to the outside world. A NetWare 6 mail server, a Win2k web server, a NetWare 5.1 print and file server (with nothing important on it) and a Nortel VPN concentrator. They all have static NAT translations, and they all have relaxed firewall rules for access from the public net. Anything from allow all traffic to allow only on certain ports. I verified that I can get to all four boxes from home before I ran the test.

    Thinking that these four would show up for sure, I was really more concerned with what else might show up, (looking for cracks in the firewall) though I did want to see how much of these four boxes was visible.

    So I ran this command from nmap as root:
    nmap -v -sS -sR x.x.x.0/21 >> myfile

    Lo and behold.....the only thing that showed up out of all those hosts was the mail server. Yeah for me, the firewall seems to be working, but this has got to be a bit of a false sense of security. Why didn't nmap catch my other three 'open' boxes? Wrong arguments on my part?

  2. #2
    Senior Member
    Join Date
    Jan 2002
    Did it show them as "down" ?

    Bear in mind that by default nmap sends an ICMP ping and a SYN to port 80. If it receives a response from neither, it assumes the host is down. It won't scan any more ports if the host is down.

    Use -P0 to cause it to assume all hosts are up (this does make it rather slow, so be aware of this)


  3. #3
    Regal Making Handler
    Join Date
    Jun 2002
    -PO ??
    Just learning to use nmap myself. I'm sure others will be of more help.

    Slarty beat me to it.
    What happens if a big asteroid hits the Earth? Judging from realistic simulations involving a sledge hammer and a common laboratory frog, we can assume it will be pretty bad. - Dave Barry

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts