Ping a Specific Port

Question

cweiske

Asked: 2019-03-06 01:39:36 +0800 CST2019-03-06 01:39:36 +0800 CST 2019-03-06 01:39:36 +0800 CST

regular nmap scan flaky; hosts are missing sometimes

772

I'm using nmap 7.6 to scan my local wired network every minute.

The problem is that the scan results are flaky: Sometimes hosts are missing in the result, although they are definitively available (e.g. the router that I use to get into this network). A minute later, the same scan finds the machine again.

My nmap command is:

nmap -sS -n -p T:21,22,80,443,2101,9009\
     -oX "/tmp/nmap-`date -u --rfc-3339=seconds`"\
     192.168.178.0/24

nmap reports hosts as "up" in the XML file because of ARP responses:

<status state="up" reason="arp-response" reason_ttl="0"/>

The hosts that are reported as "missing" change from case to case; it's not always the same host that is reported missing.

My questions are now:

Why does nmap not detect the hosts as up?
What can I do to improve reliablility of the scans?

https://security.stackexchange.com/q/191318/25645

1 Answers

Voted

cweiske · Answer 1 · 2019-03-06T02:02:35+08:00

Best Answer

cweiske

2019-03-06T02:02:35+08:002019-03-06T02:02:35+08:00

nmap seems to have a bug that I stumbled over: https://github.com/nmap/nmap/issues/92

0

regular nmap scan flaky; hosts are missing sometimes

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?