Re: Nmap not play nice w/ Cisco VPN

["Wagner, Chris (GEAE, CBTS)" <chris.wagner () ae ge com>]

It's Cisco VPN client 4.7.00.0533.  I think it's a purely client side
problem since I can ping, ssh, etc to the host and nmap eventually works
with the -e eth1 -P0 options.  So however Cisco is building the virutal
interface on my PC, it's something that nmap can't understand properly. 
It should be directly sending the probes through eth0 AFAIK.  I haven't
tried any of the other options since this problem is below them.  It
wants to determine the remote MAC address even though it's a remote
network.  That seems to be the root of the problem.

Brett Cunningham wrote:
> I'm not sure why you had problems over the VPN. I just tested it over
> my Cisco VPN and had no problems doing a simple "nmap 10.x.x.x". I
> also am using Nmap version 4.11. What kind of tunnel did you create?
> And I'm assuming this is on a concentrator, so do you have a model
> number for it? That shouldn't make much of a difference. If you're
> able to ping it, I'm assuming you have the correct box. Is there
> anything in between the end of the tunnel and the box you're trying to
> scan, such as an IPS, that might block nmap activity? Lastly, what
> options have you tried (ie, syn scan, paranoid, etc.)?
>
> - sniper22


-- 
Chris Wagner
CBTS
GE Aircraft Engines
Chris.Wagner () ae ge com

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org