Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Question about nmap (nping) and Record Route option

From: David Fifield <david () bamsoftware com>
Date: Fri, 26 Jul 2013 03:24:27 -0700
On Sun, Jun 16, 2013 at 11:17:29PM +0300, Kevin Wilson wrote:

Hello,
following:
http://seclists.org/nmap-dev/2006/q3/52
I tried this:
nping --ip-options "R" scanme.insecure.org
And I got:
Starting Nping 0.6.25 ( http://nmap.org/nping ) at 2013-06-17 02:05 IDT
SENT (0.1653s) ICMP 192.168.2.10 > 74.207.244.221 Echo request
(type=8/code=0) ttl=64 id=52304 iplen=68 ipopts={ NOP RR{#0.0.0.0
0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0}}
RCVD (0.4292s) ICMP 74.207.244.221 > 192.168.2.10 Echo reply
(type=0/code=0) ttl=52 id=45126 iplen=68 ipopts={ RR{ 79.177.1.134
212.179.37.1 212.179.160.186 62.219.189.202 80.81.192.191
184.105.213.161 184.105.213.94 184.105.213.178 184.105.222.90#} EOL}
SENT (1.1656s) ICMP 192.168.2.10 > 74.207.244.221 Echo request
(type=8/code=0) ttl=64 id=52304 iplen=68 ipopts={ NOP RR{#0.0.0.0
0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0}}
SENT (2.1667s) ICMP 192.168.2.10 > 74.207.244.221 Echo request
(type=8/code=0) ttl=64 id=52304 iplen=68 ipopts={ NOP RR{#0.0.0.0
0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0}}
RCVD (2.4270s) ICMP 74.207.244.221 > 192.168.2.10 Echo reply
(type=0/code=0) ttl=52 id=45127 iplen=68 ipopts={ RR{ 79.177.1.134
212.179.37.1 212.179.160.186 62.219.189.202 80.81.192.191
184.105.213.161 184.105.213.94 184.105.213.178 184.105.222.90#} EOL}
SENT (3.1670s) ICMP 192.168.2.10 > 74.207.244.221 Echo request
(type=8/code=0) ttl=64 id=52304 iplen=68 ipopts={ NOP RR{#0.0.0.0
0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0}}
SENT (4.1676s) ICMP 192.168.2.10 > 74.207.244.221 Echo request
(type=8/code=0) ttl=64 id=52304 iplen=68 ipopts={ NOP RR{#0.0.0.0
0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0}}

Max rtt: 263.812ms | Min rtt: 260.246ms | Avg rtt: 262.029ms
Raw packets sent: 5 (340B) | Rcvd: 2 (136B) | Lost: 3 (60.00%)
Tx time: 4.00356s | Tx bytes/s: 84.92 | Tx pkts/s: 1.25
Rx time: 5.00442s | Rx bytes/s: 27.18 | Rx pkts/s: 0.40
Nping done: 1 IP address pinged in 5.18 seconds


It seems that in this example , nping did its job great, as I see IP
addresses in the echo reply.

A few minutes I tried again:
nping --ip-options "R" scanme.insecure.org

This time, as you can see below, no results! (I mean no Echo reply at all).


I'm afraid I can't reproduce this. I don't know why the record route
option in particular would cause any change in behavior like this. How
long does it take before Nping starts receiving responses again? What
happens if you use "-c 0"; to the responses stop coming after a while?

David Fifield
_______________________________________________
Sent through the dev mailing list
http://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: