From owner-freebsd-security@FreeBSD.ORG  Fri Jun 18 16:50:58 2004
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 3FDD916A4CE
	for <freebsd-security@freebsd.org>;
	Fri, 18 Jun 2004 16:50:58 +0000 (GMT)
Received: from ox.eicat.ca (ox.eicat.ca [66.96.30.35])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 1194543D1F
	for <freebsd-security@freebsd.org>;
	Fri, 18 Jun 2004 16:50:58 +0000 (GMT)
	(envelope-from dgilbert@daveg.ca)
Received: by ox.eicat.ca (Postfix, from userid 66)
	id 2580CC11A; Fri, 18 Jun 2004 12:50:00 -0400 (EDT)
Received: by canoe.dclg.ca (Postfix, from userid 101)
	id 81F411D26A8; Fri, 18 Jun 2004 12:49:59 -0400 (EDT)
Message-ID: <16595.7479.439833.235009@canoe.dclg.ca>
Date: Fri, 18 Jun 2004 12:49:59 -0400
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
In-Reply-To: <20040618062557.GA616@kolic.net>
References: <20040617120329.8AA7216A4D5@hub.freebsd.org>
	<20040618062557.GA616@kolic.net>
X-Mailer: VM 7.17 under 21.5  (beta15) "celery" XEmacs Lucid
From: David Gilbert <freebsd-list@dclg.ca>
To: Zoran Kolic <kolicz@eunet.yu>
cc: freebsd-security@freebsd.org
Subject: Re: nmap not scanning networks?
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Security issues [members-only posting]
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 18 Jun 2004 16:50:58 -0000

>>>>> "Zoran" == Zoran Kolic <kolicz@eunet.yu> writes:

>> nmap -sT -p 21 '172.19.17.*'
Zoran> Have you tried without "'"?  Or 172.19.17.1-254?  Nmap works
Zoran> for me. Maybe port 21?

I've noticed that nmap on FreeBSD is particularly lame at scanning the
local network.  If the majority of the addresses on the local network
are unoccupied, then it will pause with a 'no buffer space available'
message and pause for 15 or 20 seconds each.  This seems to be due to
it wanting to send a number of packets to the same addresses and when
the arp is not resolved we're putting a negative entry in the routing
table.

... or at least that was the behaviour.  Recent -CURRENTS don't even
seem to try to send arp entries as the arp table isn't full of
incomplete entries as it was before.

Dave.

-- 
============================================================================
|David Gilbert, Independent Contractor.       | Two things can only be     |
|Mail:       dave@daveg.ca                    |  equal if and only if they |
|http://daveg.ca                              |   are precisely opposite.  |
=========================================================GLO================