Re: zenmap doesn't scan my user mode linux image

[David Fifield <david () bamsoftware com>]

On Tue, Mar 09, 2010 at 09:41:12AM -0700, David Fifield wrote:
> On Mon, Mar 08, 2010 at 10:34:32PM +0100, Toralf Förster wrote:
> > David Fifield wrote at 18:49:00
> > > On Sun, Mar 07, 2010 at 10:09:12AM +0100, Toralf Förster wrote:
> > > > > And what is the output using your original command line? (Without
> > > > > --unprivileged.)
> > > >
> > > > n22 ~ # nmap -A n22_uml
> > > >
> > > > Starting Nmap 5.21 ( http://nmap.org ) at 2010-03-07 10:07 CET
> > > > Note: Host seems down. If it is really up, but blocking our ping probes,
> > > > try - PN
> > > > Nmap done: 1 IP address (0 hosts up) scanned in 0.63 seconds
> > >
> > > It looks like maybe the User Mode Linux isn't responding to ARP ping.
> > > Please run these commands and send their output.
> > >
> > > # nmap --send-ip -A n22_uml
> > > # nmap -PN -A n22_uml
> > > # nmap --iflist
> > >
> > > David Fifield
> > tfoerste@n22 ~ $ su -
> > Password:            
> > n22 ~ # nmap --send-ip -A n22_uml
> >
> > Starting Nmap 5.21 ( http://nmap.org ) at 2010-03-08 22:32 CET
> > Note: Host seems down. If it is really up, but blocking our ping probes, try -
> > PN
> > Nmap done: 1 IP address (0 hosts up) scanned in 3.50 seconds                    
> > n22 ~ # nmap -PN -A n22_uml                                                     
> >
> > Starting Nmap 5.21 ( http://nmap.org ) at 2010-03-08 22:32 CET
> > Nmap done: 1 IP address (0 hosts up) scanned in 0.59 seconds  
> > n22 ~ # nmap --iflist                                         
> >
> > Starting Nmap 5.21 ( http://nmap.org ) at 2010-03-08 22:32 CET
> > ************************INTERFACES************************    
> > DEV  (SHORT) IP/MASK          TYPE        UP MAC              
> > lo   (lo)    127.0.0.1/8      loopback    up                  
> > eth0 (eth0)  192.168.0.254/24 ethernet    up 00:24:7E:11:75:C4
> > ppp0 (ppp0)  85.177.125.95/32 point2point up                  
> > tap0 (tap0)  192.168.0.253/32 ethernet    up A2:56:17:FF:0C:5F
> >
> > **************************ROUTES**************************
> > DST/MASK         DEV  GATEWAY
> > 213.191.76.23/32 ppp0
> > 192.168.0.50/32  tap0
> > 192.168.0.0/0    eth0
> > 127.0.0.0/0      lo
> > 0.0.0.0/0        ppp0 213.191.76.23
>
> I think this is the same problem as
>
> "Nmap bug - Doesn't folow static route"
> http://seclists.org/nmap-dev/2010/q1/685
>
> You must be scanning 192.168.0.253. That address happens to be inside
> the netmask for the eth0 device, so Nmap is choosing that device,
> without considering the more specific entry for tap0 that comes later.
> There's no solution for it yet. As a workaround, try changing the IP
> address of the User Mode Linux to something outside of the netmask of
> eth0, like 192.168.1.253.

If you are building from Subversion, please update to at least r16970
and try again. The routing problem should be fixed. See
http://seclists.org/nmap-dev/2010/q1/845.

David Fifield
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/