Re: Need help for nmap scan

[kx <kxmail () gmail com>]

Andreas is right, especially if you are scanning from outside the targets LAN.

If you are inside the targets LAN, sniff for DHCP traffic, and perform
traffic analysis. As far as using nmap, both the ARP ping (vendor
code), and OS detection can help identify what routers are on the LAN,
which is likely to be the default gateway.

If you are outside the target LAN, at best, you may be able to tell if
the target is behind a NAT with nmap, but it depends.

Cheers,
  kx



On 4/20/06, Andreas Ericsson <ae () op5 se> wrote:
> uday kumar kunta wrote:
> > Hi all,
> >
> >   I need some help for the following queries:
> >
> >    With Nmap can we get the information as whether the IP is static or DHCP enabled?
>
> That's impossible without either having access to the node in question
> to check up its access, or sniffing the traffic coming from it when it
> tries to renew its lease (if ever).
>
>
> > If possible,How can we?
> >    Can we get the default gatewayIP and subnet mask to which the host is connected using nmap scan?
>
> Nopes.
>
> --
> Andreas Ericsson                   andreas.ericsson () op5 se
> OP5 AB                             www.op5.se
> Tel: +46 8-230225                  Fax: +46 8-230231
>
>
> _______________________________________________
> Sent through the nmap-dev mailing list
> http://cgi.insecure.org/mailman/listinfo/nmap-dev


_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev