Re: OS detection problem

["sara fink" <sara.fink () gmail com>]

HI

I still don't know what the router/switch runs but I have some guess.
It is definitely not dlink or hp printer.

Either it's  some flavor of cisco or Juniper networks. 1 hop after
that I find it's a Cisco flavor.

On Mon, Mar 24, 2008 at 3:24 AM, João Medeiros <ignotus21 () gmail com> wrote:
> Hi Sara,
>
>     I tested this FP with my application and the most four closely system was:
>
>     - [5.374400] Cisco VPN 3000 Concentrator VPN platform (software
>  version 4.7.2.D)
>     - [5.391158] HP LaserJet 4350 printer
>     - [5.468121] D-Link DGS-3324SR or DSG-3612G switch
>     - [5.583666] Juniper Networks M10 or M320 router (JUNOS 7.4R3.4)
>
>     The value between braces is the Euclidean distance.
>
>  Att, João Medeiros.
>
>
>
>  On Sat, Mar 22, 2008 at 7:43 AM, sara fink <sara.fink () gmail com> wrote:
>  > I ran a scan with OS detection. Instead I received a very scrambled
>  >  output. Here is what I received:
>  >
>  >  No exact OS matches for host (If you know what OS is running on it,
>  >  see http://insecure.org/nmap/submit/ ).
>  >  TCP/IP fingerprint:
>  >  OS:SCAN(V=4.53%D=3/22%OT=179%CT=1%CU=37293%PV=N%DS=1%G=Y%TM=47E4DE7A%P=i686
>  >  OS:-pc-linux-gnu)SEQ(SP=F9%GCD=1%ISR=FB%TI=I%II=I%SS=S%TS=7)SEQ(SP=FD%GCD=1
>  >  OS:%ISR=10C%TI=I%II=I%SS=S%TS=7)SEQ(SP=104%GCD=1%ISR=105%TI=I%II=I%SS=S%TS=
>  >  OS:7)SEQ(SP=F8%GCD=1%ISR=104%TI=I%II=I%SS=S%TS=7)SEQ(SP=100%GCD=2%ISR=10A%T
>  >  OS:I=I%II=I%SS=S%TS=7)OPS(O1=M1142NW0NNT11%O2=M1142NW0NNT11%O3=M1142NW0NNT1
>  >  OS:1%O4=M1142NW0NNT11%O5=M1142NW0NNT11%O6=M1142NNT11)WIN(W1=4074%W2=4074%W3
>  >  OS:=4074%W4=4074%W5=4074%W6=403D)ECN(R=Y%DF=N%T=3E%W=4000%O=M1142NW0%CC=N%Q
>  >  OS:=)T1(R=Y%DF=N%T=3E%S=O%A=S+%F=AS%RD=0%Q=)T2(R=N)T3(R=Y%DF=N%T=3E%W=403D%
>  >  OS:S=O%A=S+%F=AS%O=M1142NW0NNT11%RD=0%Q=)T4(R=Y%DF=N%T=3E%W=0%S=A%A=Z%F=R%O
>  >  OS:=%RD=0%Q=)T5(R=Y%DF=N%T=3E%W=0%S=Z%A=S+%F=AR%O=%RD=0%Q=)T6(R=Y%DF=N%T=3E
>  >  OS:%W=0%S=A%A=Z%F=R%O=%RD=0%Q=)T7(R=Y%DF=N%T=3E%W=0%S=Z%A=S%F=AR%O=%RD=0%Q=
>  >  OS:)U1(R=Y%DF=Y%T=FD%TOS=0%IPL=38%UN=0%RIPL=G%RID=G%RIPCK=G%RUCK=G%RUL=G%RU
>  >  OS:D=G)IE(R=Y%DFI=S%T=FD%TOSI=Z%CD=S%SI=S%DLI=S)
>  >
>  >
>  >  Uptime: 282.958 days (since Wed Jun 13 14:24:57 2007)
>  >  Network Distance: 1 hop
>  >  TCP Sequence Prediction: Difficulty=256 (Good luck!)
>  >  IP ID Sequence Generation: Incremental
>  >
>  >
>  >  Any help will be highly appreciated.
>  >
>  >  _______________________________________________
>  >  Sent through the nmap-dev mailing list
>  >  http://cgi.insecure.org/mailman/listinfo/nmap-dev
>  >  Archived at http://SecLists.Org
>  >

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org