ping blocking


 
Thread Tools Search this Thread
Special Forums IP Networking ping blocking
# 1  
Old 06-17-2011
ping blocking

Hi

I am starting to practice nmap for my own education.

Now I created two host in virtual box.
Bot are scientific linux, one in installed as web server and the other as developing station.


I tried to run nmap on so I did nmap on their IP address, I got an answer that ip is down or that something blocking the ping.

I wonder if it is iptables or something else and how can I cancel it?

Thank in advance.
# 2  
Old 06-17-2011
If you can get it, the arping utility is useful for telling between obnoxious firewalls and actual network problems. A client can't ignore ARP and still communicate over IP, afterall.

[edit] It of course only can send arp over a local subnet, though.

Some distributions of linux do block ping. Can your client ping you? If so it's not likely to be blocked since they're the same distro.

If your client is behind NAT you may not be able to directly ping it from the host.
This User Gave Thanks to Corona688 For This Post:
# 3  
Old 06-17-2011
Quote:
Originally Posted by Corona688
If you can get it, the arping utility is useful for telling between obnoxious firewalls and actual network problems. A client can't ignore ARP and still communicate over IP, afterall.
thank you for your help.


well I did harp in host OS of the two guest virtual machine (the two scientific linux).

It seem that they are indeed detected.
Because I see their name.

Now since I want to learn the nmap and linux networking, can you guide me how can I find what block the ping in the scientif linux machine.

Since it is VM in my computer I have direct access to it.

What should I do to detect what is blocking the ping?
Is it the iptables or something else?
I am newbie to this issue so any help will be welcome.
# 4  
Old 06-17-2011
Quote:
Originally Posted by programAngel
Since it is VM in my computer I have direct access to it.
Surprisingly, not necessarily. It may depend on what network arrangement you configured them for.
Quote:
What should I do to detect what is blocking the ping?
Is it the iptables or something else?
I am newbie to this issue so any help will be welcome.
Repeating the same questions doesn't us the information we need to help you.

I think I ninjaed in an edit while you were replying, some new questions in there now.
This User Gave Thanks to Corona688 For This Post:
# 5  
Old 06-17-2011
Quote:
Originally Posted by Corona688
If you can get it, the arping utility is useful for telling between obnoxious firewalls and actual network problems. A client can't ignore ARP and still communicate over IP, afterall.

[edit] It of course only can send arp over a local subnet, though.

Some distributions of linux do block ping. Can your client ping you? If so it's not likely to be blocked since they're the same distro.

If your client is behind NAT you may not be able to directly ping it from the host.
the network setting of the VM is bridge so they are not behind NAT.

When I do ping to the VM from the command line it is working as well as from the other direction (from the VM to the host OS(of the guest VM)).

However the nmap can not find any host behind the IP.
I get the following message :
Code:
Starting Nmap 5.21 ( http://nmap.org ) at 2011-06-17 18:58 IDT
Note: Host seems down. If it is really up, but blocking our ping probes, try -PN
Nmap done: 1 IP address (0 hosts up) scanned in 0.04 seconds

---------- Post updated at 07:05 PM ---------- Previous update was at 06:59 PM ----------

---------- Post updated at 07:06 PM ---------- Previous update was at 07:05 PM ----------

Quote:
Originally Posted by Corona688
Repeating the same questions doesn't us the information we need to help you.
Thank you.


what is the information you need for helping me?

I basically run ubuntu as the OS of my computer.
I have installed virtual box and created two VM.
Both scientific linux, one was installed as a web server and the other was installed as a developing station.

In the VM network setting I give both of them bridge.

And when I do ifconfig both show legal internal IP address just link my host OS (ubuntu).
All of the the host OS and the two guest OS have the same three first octet of the IP address.

I can do ping from and to the guest OS as well as the host OS.

However nmap claim that there is no host behind the IP of the guest OS or that something blocking ping.

However this is weird because I am able to do ping to the guest OS.

due you need any more information?

What do you think can make this problem?
# 6  
Old 06-17-2011
You're right, bridge mode should have direct communication.

If you can ping in both directions, ping is not blocked, so your title's a bit misleading. And if you can ping I think your connection's good and likely unfirewalled.

Perhaps you need to force nmap to use a specific network interface? Bridge mode can involve some network trickery that might confuse things which try to operate at a low level. Run ifconfig on the host to see what interface connects where.

It could also be that nmap can't scan your client because it really doesn't have any network services running.

And just to rule out the firewall, you can do /sbin/iptables-save on both hosts to see if it prints anything.
This User Gave Thanks to Corona688 For This Post:
# 7  
Old 06-17-2011
Quote:
Originally Posted by Corona688
If you can ping in both directions, ping is not blocked, so your title's a bit misleading.
the title was because of the nmap message.

It claim that the ping is maybe blocking.

as you can see in the nmap message that I have posted.

---------- Post updated at 07:15 PM ---------- Previous update was at 07:10 PM ----------

well when I do:
Code:
nmap -PN 192.168.1.7

then I get :
Code:
Nmap scan report for new-host-2.home (192.168.1.7)
Host is up (0.0012s latency).
Not shown: 999 filtered ports
PORT   STATE SERVICE
22/tcp open  ssh

Nmap done: 1 IP address (1 host up) scanned in 5.25 seconds

so there is at least one service up there, the SSH.

But something is blocking the nmap ping.

What is it and how can I remove it if I want.

you know I do it for my education.
I want to learn how linux work in networking, that is why I ask you what can block in linux (and more specifically scientific linux) the nmap ping and in what why is it different from the ping that I write in the command line?

---------- Post updated at 07:21 PM ---------- Previous update was at 07:15 PM ----------

Quote:
Originally Posted by Corona688
Perhaps you need to force nmap to use a specific network interface? Bridge mode can involve some network trickery that might confuse things which try to operate at a low level. Run ifconfig on the host to see what interface connects where.
I did ifconfig in both.
On what part of the ifconfig do you want me to look?
there both IP start with 192.168.1
only that the guest OS is 192.168.1.7 and the one of the host is 192.168.1.3
Quote:
Originally Posted by Corona688
It could also be that nmap can't scan your client because it really doesn't have any network services running.
there is SSH service on the client.
Quote:
Originally Posted by Corona688
And just to rule out the firewall, you can do /sbin/iptables-save on both hosts to see if it prints anything.
well I did what you suggest in both the host OS (ubuntu) and the guest OS (scientif linux) and it print nothing.
Login or Register to Ask a Question

Previous Thread | Next Thread

10 More Discussions You Might Find Interesting

1. Programming

Ping test sends mail when ping fails

help with bash script! im am working on this script to make sure my server will stay online, so i made this script.. HOSTS="192.168.138.155" COUNT=4 pingtest(){ for myhost in "$@" do ping -c "$COUNT" "$myhost" &&return 1 done return 0 } if pingtest $HOSTS #100% failed... (4 Replies)
Discussion started by: mort3924
4 Replies

2. Programming

Which are blocking and non-blocking api's in sockets in C ?

among the below socket programming api's, please let me know which are blocking and non-blocking. socket accept bind listen write read close (2 Replies)
Discussion started by: VSSajjan
2 Replies

3. Shell Programming and Scripting

How to get reason for ping failure using perls Net::Ping->new("icmp");?

Hi I am using perl to ping a list of nodes - with script below : $p = Net::Ping->new("icmp"); if ($p->ping($host,1)){ print "$host is alive.\n"; } else { print "$host is unreacheable.\n"; } $p->close();... (4 Replies)
Discussion started by: tavanagh
4 Replies

4. Shell Programming and Scripting

Animation Ping on Solaris Like Cisco Ping

Hi, I develop simple animation ping script on Solaris Platform. It is like Cisco ping. Examples and source code are below. bash-3.00$ gokcell 152.155.180.8 30 Sending 30 Ping Packets to 152.155.180.8 !!!!!!!!!!!!!.!!!!!!!!!!!!!!!. % 93.33 success... % 6.66 packet loss...... (1 Reply)
Discussion started by: gokcell
1 Replies

5. Red Hat

Blocking an IP address

Dear all, I am new to this forum.I need some assistant from you people. I have a server in which Linux 5 is installed and it is in the network. How i block any user to access my server.. Upto how many users i can block.. send me the procedure.... Thank you in advance...... (10 Replies)
Discussion started by: sudhansu
10 Replies

6. UNIX for Dummies Questions & Answers

Blocking signals

I know how to add signal to a set. But what if I want to add 2 or 3 signals to the set. I know I can use sigaddset (&set,SIGBUS)....but what if I want to add SIGBUS and SIGALRM at once. Do i have to do it like this.. sigaddset (&set,SIGBUS); sigaddset (&set,SIGALRM); Is there another way to... (0 Replies)
Discussion started by: joker40
0 Replies

7. Programming

non blocking connect

OS : solaris 10 X86 I created stream socket, tries to connect to port 7 on the remote machine. After doing the non blocking connect call I did select with time out value is 3 secs. I am always getting timed out though I am writing prior to select. code: x=fcntl(S,F_GETFL,0);... (1 Reply)
Discussion started by: satish@123
1 Replies

8. UNIX for Advanced & Expert Users

ps blocking

Hi Folks I have been debugging a script that is called every thirty seconds. Basically it is doing a ps, well two actually, one to file (read by the getline below) and the other into a pipe. The one into the pipe is: - V_SYSVPS=/usr/sysv/bin/ps $V_SYSVPS -p$PIDLIST -o$PSARGS... (0 Replies)
Discussion started by: steadyonabix
0 Replies

9. Shell Programming and Scripting

blocking script help

sed -n '/robots.txt/!{s/\(\{1,\}\.*\.*\.*\).*\/\(.*\.txt\).*/\1 \2/p;}' myaapache.log Above command will search all txt except robots.txt from apache logs and show like 94.136.63.119 idsuper.txt 174.121.67.233 fx29id1.txt I want to block that ip address automatically, i need script... (1 Reply)
Discussion started by: learnbash
1 Replies

10. UNIX for Dummies Questions & Answers

blocking domains

Dear All , Kindly note I have sun solaries 7 . I want to block a domain who keep sending emails to my domain and users . thanks (1 Reply)
Discussion started by: tamemi
1 Replies
Login or Register to Ask a Question