跟踪路由发生了什么情况?

tag-icon tag-icon linux networking nmap
跟踪路由发生了什么情况?

以下是我traceroute从某个位置跑步时发生的情况:

# traceroute google.com
traceroute to google.com (74.125.227.39), 30 hops max, 60 byte packets
 1  gateway.local.enactpc.com (10.0.0.1)  0.138 ms  0.101 ms  0.084 ms
 2  * * *
 3  * * *
 4  * * *
 5  * * *
 6  * * *
 7  * * *
 8  * * *
 9  * * *
10  * * *
11  * * *
12  * * *
13  * * *
14  * * *
15  * * *
16  * * *
17  * * *
18  * * *
19  * * *
20  * * *
21  * * *
22  * * *
23  * * *
24  * * *
25  * * *
26  * * *
27  * * *
28  * * *
29  * * *
30  * * *

完全没有什么有趣的东西...

现在,我最初以为这只是该位置网络设置的一个事实。(我猜他们阻止了 ping 或类似的东西……)

但是,请注意当我运行nmap跟踪路由时会发生什么......

# nmap -sP --traceroute google.com

Starting Nmap 5.21 ( http://nmap.org ) at 2012-09-25 22:18 CDT
Nmap scan report for google.com (74.125.227.40)
Host is up (0.034s latency).
Hostname google.com resolves to 11 IPs. Only scanned 74.125.227.40
rDNS record for 74.125.227.40: dfw06s06-in-f8.1e100.net

TRACEROUTE (using proto 1/icmp)
HOP RTT      ADDRESS
1   0.19 ms  gateway.local.enactpc.com (10.0.0.1)
2   1.93 ms  99-20-92-1.lightspeed.austtx.sbcglobal.net (99.20.92.1)
3   25.61 ms 99-20-92-2.lightspeed.austtx.sbcglobal.net (99.20.92.2)
4   ... 6
7   23.68 ms 12.83.68.137
8   31.30 ms gar23.dlstx.ip.att.net (12.122.85.73)
9   ...
10  31.82 ms 72.14.233.65
11  32.27 ms 209.85.250.77
12  32.98 ms dfw06s06-in-f8.1e100.net (74.125.227.40)

Nmap done: 1 IP address (1 host up) scanned in 3.29 seconds

使用时nmap我获得的结果比使用时多得多traceroute,为什么?

注意,我检查过了,目标 IP 地址的差异并没有关系……

编辑:

$ sudo traceroute -I google.com
[sudo] password for XXX: 
traceroute to google.com (74.125.227.14), 30 hops max, 60 byte packets
 1  gateway.local.enactpc.com (10.0.0.1)  0.151 ms  0.132 ms  0.121 ms
 2  * * *
 3  99-20-92-2.lightspeed.austtx.sbcglobal.net (99.20.92.2)  27.277 ms  27.661 ms  27.666 ms
 4  * * *
 5  * * *
 6  * * *
 7  12.83.68.137 (12.83.68.137)  28.446 ms  24.024 ms  24.689 ms
 8  gar23.dlstx.ip.att.net (12.122.85.73)  62.576 ms  61.079 ms  38.973 ms
 9  * * *
10  72.14.233.65 (72.14.233.65)  32.226 ms  31.343 ms  100.206 ms
11  216.239.47.54 (216.239.47.54)  33.117 ms  31.809 ms  32.469 ms
12  dfw06s03-in-f14.1e100.net (74.125.227.14)  32.307 ms  31.807 ms  32.554 ms

答案1

我猜是因为traceroute默认情况下使用 UDP,而nmap可能使用普通 ICMP(如tracert在 Windows 中)。尝试 quanta 的建议,但改用 switch -I,即

sudo traceroute -I google.com

答案2

尝试这个:

sudo traceroute -T google.com

相关内容