Server Administration
  Home arrow Server Administration arrow Page 3 - IP Network Scanning
Codewalker Forums 
  Tutorials  
Database Articles  
Miscellaneous  
Navigation Usability  
PEAR Articles  
Programming Basics  
Server Administration  
XML Tutorials  
  Reviews  
Database Book Reviews  
Linux Book Reviews  
Miscellaneous Reviews  
PHP Book Reviews  
PHP Software Reviews  
Server Admin Reviews  
SQL Tool Reviews  
  Code Gallery  
Content Management Code  
Contest Code  
Counters Code  
Database Code  
Date Time Code  
Discussion Board Code  
Email Code  
File Manipulation Code  
GUI Code  
Link Farm Code  
Miscellaneous Code  
Search Code  
Site Navigation Code  
User Management Code  
Mobile Linux 
App Generation ROI 
IBM® developerWorks 
Download TestComplete 
Forums Sitemap 
Weekly Newsletter 
 
Developer Updates  
Free Website Content 
 RSS  Articles
 RSS  Forums
 RSS  All Feeds
Write For Us Get Paid 
Request Media Kit
Contact Us 
Site Map 
Privacy Policy 
Support 
 USERNAME
 
 PASSWORD
 
 
  >>> SIGN UP!  
  Lost Password? 
SERVER ADMINISTRATION

IP Network Scanning
By: O'Reilly Media
  • Search For More Articles!
  • Disclaimer
  • Author Terms
    		•
    Rating: stars stars stars stars stars / 0
    2008-05-22

    Table of Contents:
  • IP Network Scanning
  • ICMP Probing Tools
  • Identifying Subnet Network and Broadcast Addresses
  • Gleaning Internal IP Addresses
    		•

    Rate this Article: Poor Best 
      ADD THIS ARTICLE TO:
      Del.ici.ous Digg
      Blink Simpy
      Google Spurl
      Y! MyWeb Furl
    Email Me Similar Content When Posted
    Add Developer Shed Article Feed To Your Site
    Email Article To Friend
    Print Version Of Article
    PDF Version Of Article
    		 
     
    ADVERTISEMENT

    IP Network Scanning - Identifying Subnet Network and Broadcast Addresses
    (Page 3 of 4 )

    Nmap identifies subnet network and broadcast addresses by counting the number of ICMP echo replies for each IP address during an ICMP ping sweep. Such addresses respond with multiple replies, providing insight into the target network and its segmentation. In Example 4-3 we use Nmap to enumerate subnet network and broadcast addresses in use for a given network (154.14.224.0/26).

    Example 4-3. Enumerating subnet network and broadcast addresses with Nmap

    $ nmap -sP 154.14.224.0/26

    Starting Nmap 4.10 ( http://www.insecure.org/nmap/ ) at 2007-04-01 20:39 UTC
    Host 154.14.224.16 seems to be a subnet broadcast address (returned 1 extra pings). Host pipex-gw.abc.co.uk (154.14.224.17) appears to be up.
    Host mail.abc.co.uk (154.14.224.18) appears to be up.
    Host 154.14.224.25 appears to be up.
    Host intranet.abc.co.uk (154.14.224.26) appears to be up.
    Host 154.14.224.27 appears to be up.
    Host 154.14.224.30 appears to be up.
    Host 154.14.224.31 seems to be a subnet broadcast address (returned 1 extra pings). Host 154.14.224.32 seems to be a subnet broadcast address (returned 1 extra pings). Host pipex-gw.smallco.net (154.14.224.33) appears to be up.
    Host mail.smallco.net (154.14.224.34) appears to be up.
    Host 154.14.224.35 seems to be a subnet broadcast address (returned 1 extra pings). Host 154.14.224.40 seems to be a subnet broadcast address (returned 1 extra pings). Host pipex-gw.example.org (154.14.224.41) appears to be up.
    Host gatekeeper.example.org (154.14.224.42) appears to be up.
    Host 154.14.224.43 appears to be up.
    Host 154.14.224.47 seems to be a subnet broadcast address (returned 1 extra pings).

    This scan has identified six subnets within the154.14.224.0/26network, as follows:

    • An unused or filtered block from154.14.224.0to154.14.224.15(14 usable addresses)
    • Theabc.co.ukblock from154.14.224.16to154.14.224.31(14 usable addresses) 
    • Thesmallco.netblock from154.14.224.32to154.14.224.35(2 usable addresses) 
    • An unused or filtered block from154.14.224.36to154.14.224.39(2 usable addresses) 
    • Theexample.orgblock from154.14.224.40to154.14.224.47(6 usable addresses) 
    • An unused or filtered block from154.14.224.48to154.14.224.63(14 usable addresses)

    Useful details about subnet network and broadcast addresses and CIDR slash notation can be found at http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing. An online IP calculator is also available at http://jodies.de/ipcalc.

    Next: Gleaning Internal IP Addresses >>
     

    More Server Administration Articles
    More By O'Reilly Media


     
    >>> Be the FIRST to comment on this article!

    Buy this book now. This article is excerpted from chapter four of Network Security Assessment, Second Edition, written by Chris McNab (O'Reilly, 2007; ISBN: 0596510306). Check it out today at your favorite bookstore. Buy this book now.

    SERVER ADMINISTRATION ARTICLES

    - Processes in the UNIX Shell
    - Migrating from Windows to Wine
    - Wine: Not Another Emulator
    - Preventive Measures to Block SSH Attacks
    - Monitoring Temperatures with Cacti
    - Cacti: RRDTool-based Graphing Solution
    - Network Magic 5.0 Review
    - Netfilter and Iptables Overview
    - Installing and Configuring Squid
    - Clickfree PC Backup Systems Compared
    - Squid, the Caching Proxy
    - Regular Expressions in the Unix Shell
    - Source Code Version Control Solutions
    - OTRS: Open Source Ticket Request System
    - Clonezilla: Free Mass Disk-Cloning Utility
    Find More Server Administration Articles




    © 2003-2009 by Developer Shed. All rights reserved. DS Cluster 2 Hosted by Hostway
    For more Enterprise Application Development news, visit eWeek