Pages: 1 2 [3]   En bas

Auteur Sujet: Windows : Hping - faire un ping TCP quand l'ICMP est bloqué  (Lu 32638 fois)

0 Membres et 1 Invité sur ce sujet

corrector

  • Invité
Windows : Hping - faire un ping TCP quand l'ICMP est bloqué
« Réponse #24 le: 17 décembre 2015 à 21:14:23 »
Comment l'heure d'arrivée du paquet est récupérée?
IP archivée

corrector

  • Invité
tcp/113 sur Freebox
« Réponse #25 le: 17 décembre 2015 à 21:19:49 »
SENT (3.7750s) TCP 192.168.1.13:65529 > 82.----:113 S ttl=64 id=40772 iplen=40  seq=3953884143 win=1480
RCVD (3.8360s) ICMP [82.----- > 192.168.1.13 Port 113 unreachable (type=3/code=3) ] IP [ttl=60 id=44121 iplen=68 ]

Max rtt: 61.000ms | Min rtt: 53.000ms | Avg rtt: 58.199ms
Raw packets sent: 5 (270B) | Rcvd: 5 (340B) | Lost: 0 (0.00%)
Nping done: 1 IP address pinged in 4.84 seconds


SENT (0.3910s) TCP 192.168.1.13:55030 > 82.----:114 S ttl=64 id=16280 iplen=40  seq=135048044 win=1480
SENT (1.5420s) TCP 192.168.1.13:55030 > 82.----:114 S ttl=64 id=16280 iplen=40  seq=135048044 win=1480

Il y a donc bien une différence entre tcp/113 et les autres ports.
IP archivée

corrector

  • Invité
Windows : Hping - faire un ping TCP quand l'ICMP est bloqué
« Réponse #26 le: 17 décembre 2015 à 22:28:23 »
Avec DMZ :

SENT (18.2180s) TCP 142.4.203.217:38233 > 82.x.y.z:113 S ttl=19 id=1314 iplen=40 seq=1312328958 win=1480
RCVD (18.3110s) ICMP [78.254.0.163 > 142.4.203.217 TTL=0 during transit (type=11/code=0) ] IP [ttl=53 id=20772 iplen=68 ]
SENT (19.2330s) TCP 142.4.203.217:38233 > 82.x.y.z:113 S ttl=20 id=1314 iplen=40 seq=1312328958 win=1480
RCVD (19.3580s) ICMP [82.x.y.z > 142.4.203.217 TTL=0 during transit (type=11/code=0) ] IP [ttl=52 id=4474 iplen=68 ]
SENT (20.2330s) TCP 142.4.203.217:38233 > 82.x.y.z:113 S ttl=21 id=1314 iplen=40 seq=1312328958 win=1480
SENT (21.2330s) TCP 142.4.203.217:38233 > 82.x.y.z:113 S ttl=22 id=1314 iplen=40 seq=1312328958 win=1480
SENT (22.2330s) TCP 142.4.203.217:38233 > 82.x.y.z:113 S ttl=23 id=1314 iplen=40 seq=1312328958 win=1480
SENT (23.2330s) TCP 142.4.203.217:38233 > 82.x.y.z:113 S ttl=24 id=1314 iplen=40 seq=1312328958 win=1480
RCVD (23.3580s) ICMP [82.x.y.z > 142.4.203.217 Host 82.x.y.z unreachable (type=3/code=1) ] IP [ttl=52 id=4475 iplen=68 ]
RCVD (23.3580s) ICMP [82.x.y.z > 142.4.203.217 Host 82.x.y.z unreachable (type=3/code=1) ] IP [ttl=52 id=4476 iplen=68 ]
SENT (24.2480s) TCP 142.4.203.217:38233 > 82.x.y.z:113 S ttl=25 id=1314 iplen=40 seq=1312328958 win=1480
RCVD (24.2480s) ICMP [82.x.y.z > 142.4.203.217 Host 82.x.y.z unreachable (type=3/code=1) ] IP [ttl=52 id=4477 iplen=68 ]
SENT (25.2480s) TCP 142.4.203.217:38233 > 82.x.y.z:113 S ttl=26 id=1314 iplen=40 seq=1312328958 win=1480
SENT (26.2480s) TCP 142.4.203.217:38233 > 82.x.y.z:113 S ttl=27 id=1314 iplen=40 seq=1312328958 win=1480
SENT (27.2480s) TCP 142.4.203.217:38233 > 82.x.y.z:113 S ttl=28 id=1314 iplen=40 seq=1312328958 win=1480
RCVD (27.3730s) ICMP [82.x.y.z > 142.4.203.217 Host 82.x.y.z unreachable (type=3/code=1) ] IP [ttl=52 id=4478 iplen=68 ]
RCVD (27.3730s) ICMP [82.x.y.z > 142.4.203.217 Host 82.x.y.z unreachable (type=3/code=1) ] IP [ttl=52 id=4479 iplen=68 ]

Testé sur http://nping.online-domain-tools.com/run/
paramètres : --tr --tcp -p 113 82.x.y.z

Par comparaison :


Starting Nping 0.6.47 ( http://nmap.org/nping ) at 2015-12-17 21:30 Coordinated Universal Time
SENT (0.2660s) TCP 37.187.55.111:3606 > 82.x.y.z:80 S ttl=1 id=60175 iplen=40 seq=4168523573 win=1480
RCVD (0.2970s) ICMP [91.121.245.221 > 37.187.55.111 TTL=0 during transit (type=11/code=0) ] IP [ttl=255 id=4636 iplen=56 ]
SENT (1.2970s) TCP 37.187.55.111:3606 > 82.x.y.z:80 S ttl=2 id=60175 iplen=40 seq=4168523573 win=1480
RCVD (1.3120s) ICMP [178.33.100.139 > 37.187.55.111 TTL=0 during transit (type=11/code=0) ] IP [ttl=254 id=60322 iplen=96 ]
SENT (2.2970s) TCP 37.187.55.111:3606 > 82.x.y.z:80 S ttl=3 id=60175 iplen=40 seq=4168523573 win=1480
RCVD (2.3120s) ICMP [94.23.122.117 > 37.187.55.111 TTL=0 during transit (type=11/code=0) ] IP [ttl=253 id=17560 iplen=96 ]
SENT (3.2970s) TCP 37.187.55.111:3606 > 82.x.y.z:80 S ttl=4 id=60175 iplen=40 seq=4168523573 win=1480
SENT (4.2970s) TCP 37.187.55.111:3606 > 82.x.y.z:80 S ttl=5 id=60175 iplen=40 seq=4168523573 win=1480
RCVD (4.3120s) ICMP [78.254.249.101 > 37.187.55.111 TTL=0 during transit (type=11/code=0) ] IP [ttl=251 id=64893 iplen=96 ]
SENT (5.2970s) TCP 37.187.55.111:3606 > 82.x.y.z:80 S ttl=6 id=60175 iplen=40 seq=4168523573 win=1480
SENT (6.2970s) TCP 37.187.55.111:3606 > 82.x.y.z:80 S ttl=7 id=60175 iplen=40 seq=4168523573 win=1480
SENT (7.2970s) TCP 37.187.55.111:3606 > 82.x.y.z:80 S ttl=8 id=60175 iplen=40 seq=4168523573 win=1480
RCVD (7.3120s) ICMP [212.27.58.66 > 37.187.55.111 TTL=0 during transit (type=11/code=0) ] IP [ttl=248 id=46406 iplen=56 ]
SENT (8.2970s) TCP 37.187.55.111:3606 > 82.x.y.z:80 S ttl=9 id=60175 iplen=40 seq=4168523573 win=1480
RCVD (8.3120s) ICMP [78.254.255.201 > 37.187.55.111 TTL=0 during transit (type=11/code=0) ] IP [ttl=245 id=27053 iplen=56 ]
SENT (9.2970s) TCP 37.187.55.111:3606 > 82.x.y.z:80 S ttl=10 id=60175 iplen=40 seq=4168523573 win=1480
RCVD (9.3120s) ICMP [78.254.255.33 > 37.187.55.111 TTL=0 during transit (type=11/code=0) ] IP [ttl=246 id=59133 iplen=56 ]
SENT (10.2970s) TCP 37.187.55.111:3606 > 82.x.y.z:80 S ttl=11 id=60175 iplen=40 seq=4168523573 win=1480
RCVD (10.3120s) ICMP [78.254.255.29 > 37.187.55.111 TTL=0 during transit (type=11/code=0) ] IP [ttl=247 id=27223 iplen=56 ]
SENT (11.2970s) TCP 37.187.55.111:3606 > 82.x.y.z:80 S ttl=12 id=60175 iplen=40 seq=4168523573 win=1480
RCVD (11.3120s) ICMP [78.254.255.25 > 37.187.55.111 TTL=0 during transit (type=11/code=0) ] IP [ttl=248 id=22729 iplen=56 ]
SENT (12.2970s) TCP 37.187.55.111:3606 > 82.x.y.z:80 S ttl=13 id=60175 iplen=40 seq=4168523573 win=1480
RCVD (12.3120s) ICMP [78.254.0.163 > 37.187.55.111 TTL=0 during transit (type=11/code=0) ] IP [ttl=56 id=28862 iplen=68 ]
SENT (13.2970s) TCP 37.187.55.111:3606 > 82.x.y.z:80 S ttl=14 id=60175 iplen=40 seq=4168523573 win=1480
RCVD (13.3440s) ICMP [82.x.y.z > 37.187.55.111 TTL=0 during transit (type=11/code=0) ] IP [ttl=55 id=33082 iplen=68 ]
SENT (14.2970s) TCP 37.187.55.111:3606 > 82.x.y.z:80 S ttl=15 id=60175 iplen=40 seq=4168523573 win=1480
SENT (15.2970s) TCP 37.187.55.111:3606 > 82.x.y.z:80 S ttl=16 id=60175 iplen=40 seq=4168523573 win=1480
SENT (16.2970s) TCP 37.187.55.111:3606 > 82.x.y.z:80 S ttl=17 id=60175 iplen=40 seq=4168523573 win=1480
SENT (17.2970s) TCP 37.187.55.111:3606 > 82.x.y.z:80 S ttl=18 id=60175 iplen=40 seq=4168523573 win=1480
RCVD (17.3440s) ICMP [82.x.y.z > 37.187.55.111 Host 82.x.y.z unreachable (type=3/code=1) ] IP [ttl=55 id=33083 iplen=68 ]
RCVD (17.3440s) ICMP [82.x.y.z > 37.187.55.111 Host 82.x.y.z unreachable (type=3/code=1) ] IP [ttl=55 id=33084 iplen=68 ]

Le port 113 n'a pas l'air spécial.
IP archivée
Pages: 1 2 [3]   En haut