Nmap Development mailing list archives
Re: EXPERT IPv6 network scaning
From: niteesh kumar <niteesh3 () gmail com>
Date: Thu, 12 Apr 2012 13:47:06 +0530
On Thu, Apr 12, 2012 at 12:19 PM, David Fifield <david () bamsoftware com>wrote:
On Thu, Apr 12, 2012 at 10:58:39AM +0530, niteesh kumar wrote:On Wed, Apr 11, 2012 at 7:46 AM, David Fifield <david () bamsoftware com wrote:On Wed, Apr 11, 2012 at 01:19:08AM +0530, niteesh kumar wrote:I observed one more thing, target-ipv6-multicast-slaac.nse do scan alotofips which MLD script doesnot but those ip which are not scanned myMLDarealso not responding to Ping msgs <ECHO>. this may be attributed tomachineswho actually take part in address configuration but do notcommunicate inIPv6 network or may be due to some firewall not responding to ICMPpackets.May be a possibility that the slaac script is not checking the reachability of scanned nodes.This is common to all targets scripts. I have seen phantom addresses come from the slaac script on Windows too. Scripts should not verify addresses themselves. Nmap will do its own more reliable NDverificationof the added addresses. ICMPv6 echo is less reliable than ND.IN case of dual stack <ipv4 and ipv6 togather> nmap can be used to scan ipv4 addresses in the network, and henceforth use icmpv6 node Info messages<type 139> to get their respective ipv6 addresses.The ipv6-node-info script does this. (Actually it gives you IPv4 addresses when you know the IPv4 address; is it possible to go the other way?) David Fifield
what i was thinking is to send a NI query of code 2<data ipv4 address> to all-node multicast address <ff02::1> putting ipv4 scanned addresses. This may result in nodes responding with required information. also it would be interesting to see what happens if a noop query is sent to all node multicast. -Niteesh _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/
Current thread:
- Re: EXPERT IPv6 network scaning, (continued)
- Re: EXPERT IPv6 network scaning Patrik Karlsson (Apr 08)
- Re: EXPERT IPv6 network scaning David Fifield (Apr 08)
- Re: EXPERT IPv6 network scaning Patrik Karlsson (Apr 09)
- Re: EXPERT IPv6 network scaning niteesh kumar (Apr 09)
- Re: EXPERT IPv6 network scaning Patrik Karlsson (Apr 09)
- Re: EXPERT IPv6 network scaning niteesh kumar (Apr 10)
- Re: EXPERT IPv6 network scaning niteesh kumar (Apr 10)
- Re: EXPERT IPv6 network scaning David Fifield (Apr 10)
- Re: EXPERT IPv6 network scaning niteesh kumar (Apr 11)
- Re: EXPERT IPv6 network scaning David Fifield (Apr 11)
- Re: EXPERT IPv6 network scaning niteesh kumar (Apr 12)
- Re: EXPERT IPv6 network scaning niteesh kumar (Apr 16)
- Re: EXPERT IPv6 network scaning David Fifield (Apr 17)
- Re: EXPERT IPv6 network scaning Patrik Karlsson (Apr 21)
- Re: EXPERT IPv6 network scaning David Fifield (Apr 23)
- Re: EXPERT IPv6 network scaning David Fifield (Apr 17)