Nmap Development mailing list archives

RE: NMAP and MAC Addresses

From: "Sydie, Colin" <Colin.Sydie () landesk com>
Date: Tue, 12 Feb 2008 17:40:28 -0700



The answer shows lack of knowledge of products that are available.

Locate a product called "CC Get MAC Address" and discover the utility
does provide MAC address feedback from devices on alternate subnets.
The issue with this product is that I cannot run it as a stand alone
service and provide the STD OUT result.

Not a good answer.
 
 
 
 
 

-----Original Message-----
From: Dario Ciccarone (dciccaro) [mailto:dciccaro () cisco com] 
Sent: Tuesday, February 12, 2008 4:33 PM
To: Sydie, Colin; nmap-dev () insecure org
Subject: RE: NMAP and MAC Addresses

The question shows lack of understanding of how an IP network works.

Local network = ARP, encap L3 on L2, transmit.

Non-local = ARP for default gateway, encap on L2 frame to local gateway,
drop into the wire.

Comer and Stevens, or just Stevens. If on a budget,
http://www.redbooks.ibm.com/Redbooks.nsf/RedbookAbstracts/gg243376.html

So - neither nmap nor any other tool will be able to give you the MAC
address of a device outside your L2 broadcast domain. Well, actually you
can try a "nbtstat -A <ip_address>" for Windows machines.

Dario

-----Original Message-----
From: nmap-dev-bounces () insecure org 
[mailto:nmap-dev-bounces () insecure org] On Behalf Of Sydie, Colin
Sent: Tuesday, February 12, 2008 7:11 PM
To: nmap-dev () insecure org
Subject: NMAP and MAC Addresses

Hello,

I need a little help with NMAP.  I'm trying to run it on a network in
which I wish to return MAC addresses from every system.  These systems
can be anything from Microsoft to Linux to Other.  I want to retrieve
everything with a MAC address based on an IP address query.

I can get it to work on the same subnet however; I can't seem to
retrieve MAC addresses from systems on a different subnet.  Is there a
way to retrieve MAC addresses from any subnet using NMAP?

Thanks,

Colin Sydie


_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org

Current thread:

NMAP and MAC Addresses Sydie, Colin (Feb 12)
- RE: NMAP and MAC Addresses Dario Ciccarone (dciccaro) (Feb 12)
  - Re: NMAP and MAC Addresses Brandon Enright (Feb 12)
    - RE: NMAP and MAC Addresses Dario Ciccarone (dciccaro) (Feb 12)
    - Re: NMAP and MAC Addresses doug (Feb 12)
  - RE: NMAP and MAC Addresses Sydie, Colin (Feb 12)
    - RE: NMAP and MAC Addresses Dario Ciccarone (dciccaro) (Feb 12)
    - RE: NMAP and MAC Addresses Sydie, Colin (Feb 12)
    - RE: NMAP and MAC Addresses Dario Ciccarone (dciccaro) (Feb 12)
    - Re: NMAP and MAC Addresses Jay Chandler (Feb 12)
    - RE: NMAP and MAC Addresses Rob Nicholls (Feb 12)