Home / server / Questions / 13780
Accepted
cop1152
Asked: 2009-05-29 05:52:11 +0800 CST

How can I determine if a machine is online without using ping?

  • 772

I used to use an application that could ping or maybe run a port scan on a machine even if the machine was configured to not allow it.

I am currently trying to ping a remote machine on our WAN, but I have configured the machine to not allow ping. Is there something similar to ping that I can use?

Again, this a machine located in another city that is part of our wan.

ping

16 Answers

  1. Answer useful for Containers

    Ping is ICMP, if you blocked ICMP you can't ping.

    You might still be able to test TCP or UDP ports if you are accepting TCP/UDP connections.

    If you are running your test on containers, which lack ping, nc, telnet and other tools, you can use this trick:

    (echo >/dev/tcp/${host}/${port}) &>/dev/null && echo "open" || echo "closed"

    This will attempt to connect through tcp/udp through the device (wow, I know) and echo "open" if the port is open or "closed" if it is closed.

    It will hang for a while before echoing "close" when that is the case.

    • 23

  2. You can telnet to an open tcp port on the machine. For instance, if the machine is a web server, and has port 80 open, just:

    telnet ip.ad.dre.ss 80

    This will work even on encrypted ports (although you won't be able to understand the data)

    Some other ports to try are:

    • 443 for an https server
    • 22 for ssh

    (there is a list of ports/services in /etc/services on linux machines)

    • 18

  3. Run an SNMP agent on the remote machine, and use a manager to read one of the values out of the standard MIB.

    • 4
  4. Best Answer

    If your using XP/2003+ (this includes Vista/2008/7), then you can use the Win32_PingStatus. The machines inwhich is running the script code is the only system which needs to be XP/2003+, and it works just like using Ping.exe, only it's not using ping.exe so it should act as a loophole to your security setting which does not allow the execution of ping.exe.

    strComputer = "192.168.1.1"
Set objWMIService = GetObject("winmgmts:\\.\root\cimv2")
Set colItems = objWMIService.ExecQuery _
    ("Select * from Win32_PingStatus " & _
        "Where Address = '" & strComputer & "'")
For Each objItem in colItems
    If objItem.StatusCode = 0 Then 
        WScript.Echo "Reply received."          
    End If
Next

    See the Scripting Guy article for more info on how to use Win32_PingStatus:

    http://www.microsoft.com/technet/scriptcenter/resources/qanda/sept04/hey0914.mspx

    • 4

  5. If you have access to another machine on the same LAN as your target machine, you can use arping.

    Arping works by sending ARP packets targeting the machine, this works perfectly because you cannot block arp packets if you want to use the network (well, you can set up static arp tables everywhere :D ) But the downside is you have to be within the same LAN as your arping target.

    • 4

  6. The simple solution to this issue will be to use netcat utility. Only prerequisite for this scenario is that one should be aware of at least one port which is open on that remote machine.

    nc -nv ip_address port_number

    The above command will give a result, which would determine if the said port is open or not and hence the availability of the machine

    • 4

  7. If you have not firewalls and routers in the way, i.e., if you're on the same segment as the host you're trying to check - most of the solutions above are a little exhaustive imho.

    It doesn't matter what port you connect to, and in fact, if you connect to a port that's unlikely to have a service running, you can get the job done without being detected.

    How?

    You can use any tool you like, but we can just use telnet...

    % telnet <host> 313373
Trying 10.211.55.3...
telnet: connect to address 10.211.55.3: Connection refused
telnet: Unable to connect to remote host
%

    This should happen immediately, unless the host is dropping packets. What's actually happening is that the TCP/IP stack on the host is sending you back a TCP segment with the RST bit set - i.e. terminating your SYN packet.

    The fact that you received a RST packet means that there is indeed a host up at the other end, and as a bonus - you've done so undetected (The TCP/IP had no upper-layer application to talk to about this connection).

    Rather than telnet however, I'd probably use something like scapy, write up something that looks for the RST flag and let's you know.

    Just to complete this, if there is no host on the IP that you try - it will hang for a little while, and the timeout - the same thing that would happen if the receiving host had a firewall with a drop filter.

    If firewalls are involved, then as others have suggested, make use of tools such as nmap and whatever else.

    • 3

  8. Are there any services available on the machine? One way to see if a machine is there is to use the telnet client to connect to it, but changing the port you need to hit.

    So lets say the machine is running MS SQL which runs on port 1433 by default. You use the following command

    telnet machine-name-address 1433

    If Telnet connects the the machine is up and running, Doesn't mean it's running properly, but listening to that port nonetheless

    • 2

  9. for i in seq 1 65535 ; do tcpconnect -v remotehost $i ; done

    • 1

  10. nmap -T5 -sS -P0 ho.st.ip.addr That will see what's available port wise on that machine.. Recommend installing cygwin if you are running on windows or don't have access to a linux machine.

    • 1