Re: Subnet masks in Dotted-Decimal format

[William McVey <wam () cisco com>]

On Thu, 2006-10-19 at 12:29 -0300, Livio Zanol Puppim wrote:
> Yeah, I know It's against RFC, but a lot of things are against it either...
> Like "every host should reply an echo request with an echo reply" and many
> many other things...

Actually, RFC 2979 (sect 3.1.1) clearly states that it's acceptable for
firewalls to block ICMP Echo and Echo Reply messages.

>  Some companys likes to use this kind of mask to
> "masquerade" their networks...

Those companies are going to have a devil of a time doing route
aggregation using any modern routing protocol. Seriously, if companies
are really doing this then they are just asking for trouble (DoS by
clueless network administration).

>  I've never tried the method you've
> menthioned, i'll give this a try...

You can also use wildcards for octects. So for example:
        
        nmap -sL -n 'A.*.C.D'

  -- William

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org