Hello,
After reading some articles , I noted that one of them could be done with a ping on the broadcast address (we will not speak on the MAC address spoofing ). Since this technique is widespread, network administrators are sure to prohibit this kind of ping.
I say out of curiosity, why not try it on my network taf. I calculate the broadcast address, I make my table and watch what happens with wire shark.
MSRP:
My IP Address: 141.11.147.184
Subnet Mask: 255.255.240.00
Broadcast Address: 141.11.159.255
My ARP cache is composed of ten address.
What I see in console back:
Code:
H: \> ping 141.11.182.255
Pinging 141.11.182.255 with 32 bytes of data:
Request timed out.
Request timed out.
Why this time out? Is this normal in the case of a broadcast ping?
I note that it is the broadcast address that replied 8 times for each attempt, then it is timeout. You'd know why I did not see the IP addresses of machines that meet me? Protection made by the administrator?
After that, I check the status of my ARP cache and visibly, I have a hundred addresses. I should have much more, why is not this the case? Could this be due to a phenomenon of collision and therefore packet loss? If so, is there an option to avoid this (without ping one by one the machines)?
Bookmarks