.

Firewalk: Scan aborted: hopcount exceeded.

<<

badams_iyns

Newbie
Newbie

Posts: 3

Joined: Fri May 28, 2010 5:31 pm

Post Fri Jun 04, 2010 8:06 pm

Firewalk: Scan aborted: hopcount exceeded.

Ok, this statement will show my Ignorance…

I get this error in firewalk. Scan aborted: hopcount exceeded.
When I do a simple traceroute it’s 17 hops every time.

I'm doing this:
firewalk -s25 -d25 -pTCP XXX.XXX.XXX.XXX XXX.XXX.XXX.XXX
The ip range is /28

Thanks! I hope...
<<

hayabusa

User avatar

Hero Member
Hero Member

Posts: 1662

Joined: Mon Jan 29, 2007 2:59 pm

Post Sat Jun 05, 2010 8:53 am

Re: Firewalk: Scan aborted: hopcount exceeded.

Hints:

try using the -t switch, to set the initial TTL (hopcount):

"-t 1-25 (1)Sets initial IP TTL value (target gateway is known to be n hops from the
source host, the TTL can be preloaded to facilitate a faster scan.)"

If you then continue to get hopcount exceeded, you can also tweak the -x switch:

"-x expire vector (1)

The expire vector is the number of hops that the scanning probes will expire, past the gateway host. The binding hopcount is the hopcount of the gateway + the expire vector."
~ hayabusa ~ 

"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'


OSCE, OSCP , GPEN, C|EH
<<

badams_iyns

Newbie
Newbie

Posts: 3

Joined: Fri May 28, 2010 5:31 pm

Post Sun Jun 06, 2010 4:38 pm

Re: Firewalk: Scan aborted: hopcount exceeded.

I haven't gone through all the possible permutations... I've gone all the way through the -t i.e. -t1, -t2...etc. and now I'm trying -x1 -t1, -x1 -t2...

But so far no luck. Is this one that should be run from outside the firewall?

Return to Network Pen Testing

Who is online

Users browsing this forum: No registered users and 1 guest

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software