RTT Timeouts

[Jon Kibler <Jon.Kibler () aset com>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


RE: nmap 5.10Beta2

Hi,

I have been playing with speeding up the scanning of a system that is
one hop away from my probe box. When I ping the system, the RTT for the
first ping is about 1.5ms (mostly ARP), and thereafter it is more like
0.25ms to 0.33ms.

However, because I am doing a deep version probe of all ports (TCP and
UDP), the scan takes "forever" to complete. I would like to set the
min-rtt-timeout to be about 0.5ms and the maximum to be about 2.5ms.
However, nmap will not let me set the min to less than 1 and it will not
let me set the max to less than 5. Even then, it warns that I am going
to effect the quality of the results.

I think for systems that are a single hop away, and that have very short
response times, nmap should allow very small settings. With GB and 10GB
networks, high performance NICs, and quad core CPUs, RTT is seemingly
forever decreasing on a LAN.

Or, is there something that I am missing here? Is my logic be flawed,
and, in reality, am I risking missing information?

THANKS!

Jon K
- --
Jon R. Kibler
Chief Technical Officer
Advanced Systems Engineering Technology, Inc.
Charleston, SC  USA
o/c/s: 843-849-8214 / 843-813-2924 / 843-564-4224
e: Jon.Kibler () aset com or Jon.R.Kibler () gmail com
s: JonRKibler
http://www.linkedin.com/in/jonrkibler

My PGP Fingerprint is:
BAA2 1F2C 5543 5D25 4636 A392 515C 5045 CF39 4253


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEUEARECAAYFAktQzhcACgkQUVxQRc85QlMlVgCdEuKaMCJUUpK2wX3Y/R1b6f9N
Lh8AliA4SGBUVu19XKmzmOnynO2zwjA=
=HYSP
-----END PGP SIGNATURE-----
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/