Using nmap to traceroute on a specific port

networking port traceroute nmap
33,388

Solution 1

I can't find any parameter to control this behavior in the document of nmap.

If you want to find which hop drops the specific packet, you may try to use traceroute. The parameter -P is for protocol and -p is for port.

Hope this helps.

Solution 2

Nmap specifically chooses probes for traceroute from what it knows about the target, choosing probes that are most likely to make it all the way to the target. For this reason, its traceroute is not really useful for debugging dropped packets, but is excellent for quickly tracing the path without knowing what will reach the target.

I've just put in a feature request for this to be part of the Nping tool, which is developed by the Nmap Project and seems to be a good platform for such a capability. In the meantime, as @StevenLee mentions, there are existing traceroute tools that can specify which port to traceroute.

Share:
33,388

Related videos on Youtube

user25427
Author by

user25427

Updated on September 18, 2022

Comments

  • user25427
    user25427 over 1 year

    The short version of this is that from client A to server B, some connections are getting all the way there, and others are being dropped in transit. I know they're being dropped in transit because, when I do a tcpdump at the server, I see hits for the ports that work, but nothing for the ones that don't.

    I tried the nmap command:

    nmap -p <port> --traceroute <dst_ip>

    which works perfectly when the connection is successful, but if the connection fails for whatever reason, it marks the port as filtered and then switches to icmp for the traceroute.

    Is there something I can do to force the traceroute to stay in the port supplied even if the connection is unsuccessful? I need to be able to see how far the specific port(s) get before being dropped.

    Example nmap commands and outputs here: enter image description here

  • user25427
    user25427 almost 8 years
    Thanks a lot, the Windows tracert is pretty basic and doesn't have half the options that the unix traceroute has which is why I was trying to use nmap since it SEEMED to have exactly what I wanted, but then I ran into this behavior.
  • I say Reinstate Monica
    I say Reinstate Monica almost 7 years
    Welcome to Super User. Your answer could benefit from more detail (See How to Answer). Please edit it to explain how your solution works/how it addresses the OPs question.
  • Jeff Puckett
    Jeff Puckett over 6 years
    Unfortunately, this doesn't work either. nmap still switches to using icmp if tcp port is filtered.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

What are the default nmap options?
Scanning my public IP address with Nmap finds TCP port 1720 open, is this a security concern?
What is hosts2-ns
How to reverse arp using nping for Windows
why does nmap seems to have problems to see my android devices, sometimes it would see them but sometimes not
traceroute is not installing on ubuntu 18.04 LTS
Graphical Traceroute with Map from Repository
Difference between ESTABLISHED and LISTENING
How to scan an entire network using Nmap?
What are the significant differences between tracepath and traceroute?