HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 30 guests online
 
Advertisement

You are here: Home arrow Ethical Hacking Discussions and Related Certificationsarrow Network Pen Testingarrow Network keeps crashing (nmap)
EH-Net
May 18, 2013, 07:17:34 PM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: Network keeps crashing (nmap)  (Read 2718 times)
0 Members and 1 Guest are viewing this topic.
Kajjan
Newbie
*
Offline Offline

Posts: 2


View Profile
« on: January 09, 2012, 08:47:26 PM »

Greetings.

This is my first post here on EHN. Feels great to be here!

I ran into a problem while trying to scan my entire local network using nmap.

I am running nmap on a virtual machine using VMware (linux - Backtrack 5 r1)
VMware network settings on NAT

I also run Windows Xp sp2 virtually as a Target machine
Wmvare network settings on Host-only

Host is a windows 7 computer connected to a NETGEAR router and so on.

The script went something like this
" nmap -vv -F -T5 -sn 111.222.*.* "

And after about 50 seconds the network connection goes down.
I have to restart modem and router and then run ipconfig /renew to get the
internet connection back up again. Tried several times but i got disconnected every time.

Why does the connection go down ?


Thank you for taking your time reading my post
Logged
doodleface
Newbie
*
Offline Offline

Posts: 34



View Profile WWW
« Reply #1 on: January 09, 2012, 09:14:54 PM »
Try this command " nmap -vv -F -T4 -sn 111.222.*.* "

The problem here is the setting T5 tells nmap to send packets almost as fast as the network adapter can send them. This overloads your netgear router and causes a Denial of Service via the ping scan.
Logged
CISSP, OSCP, C|EH, E|CSA, C|HFI, GXPN, GWAPT, GCIH, GISP, GSEC, MCITP:EA, CCNA, FCT, FCNSP, JNCIA, JNCIA-FWV, MCSE Security, A+, Net+, Server+, Security+
Kajjan
Newbie
*
Offline Offline

Posts: 2


View Profile
« Reply #2 on: January 10, 2012, 07:14:08 AM »
You were right. It works now. Thank you very much. I did not realize that the scan was powerful enough to do that to my network.
lesson learned.

Peace
Logged
MaXe
Hero Member
*****
Offline Offline

Posts: 669


I've just upgraded myself to a cyborg muahahaa!!1


View Profile WWW
« Reply #3 on: January 10, 2012, 11:57:01 AM »
I was going to say the same as doodleface, as some routers even has builtin firewalls that looks at the traffic, and sometimes nmap sends malformed traffic (according to the router), which in return, drops packets or suddenly all packets.

When I haven't had any router devices and scanned, I didn't experience any problems except using T5 (aka "Insane"?) over the Internet is generally a bad idea. T5 can work on LAN's but over the Internet and generally, T4 is better to use. T3 is default.
Logged
I'm an InterN0T'er
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.061 seconds with 22 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Advertisement

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.