Cannot ping or scan Windows guests from Linux Guests

Discussions about using Windows guests in VirtualBox.
Post Reply
Kingpin
Posts: 2
Joined: 6. Jun 2016, 08:48

Cannot ping or scan Windows guests from Linux Guests

Post by Kingpin »

I am doing some practice pentesting in a virt environ
Running the latest version of VirtualBox
I have set up a number of virtual machines, linux, windows, windows server
After trialing various network modes, host only, NAT, i settled (or thought I did) on NAT Network
I have discovered that with all machines on NAT Network, I can scan from Kali Linux to OWASP BWA and Metasploitable.

I cannot seem to scan or ping any of the windows machines, Win7 or Win10 from the Kali box.
Is this a known thing?
I can go the other way, the Win7 and 10 can see and ping the Kali box
All using the NAT network default DHCP setup on 10.0.2.xxx/24

IF i turn off the Windows firewalls, they respond to ping and they are visible to scan... which defeats the purpose somewhat of trying to assess and practice pen test

Maybe this is normal? Firewalls dropping packets entirely, but I would think that being on the same LAN, machine firewalls wouldn't normally behave this way?
i.e. on my non VirtualBox LAN - I can ping my machines even with firewalls in place....
socratis
Site Moderator
Posts: 27329
Joined: 22. Oct 2010, 11:03
Primary OS: Mac OS X other
VBox Version: VirtualBox+Oracle ExtPack
Guest OSses: Win(*>98), Linux*, OSX>10.5
Location: Greece

Re: Cannot ping or scan Windows guests from Linux Guests

Post by socratis »

Kingpin wrote:IF i turn off the Windows firewalls, they respond to ping and they are visible to scan
Yes, because the firewall is blocking pings.
  1. Choose your favorite search engine.
  2. Ask the question "enable ping reply".
  3. Enjoy the reading ;)
Do NOT send me Personal Messages (PMs) for troubleshooting, they are simply deleted.
Do NOT reply with the "QUOTE" button, please use the "POST REPLY", at the bottom of the form.
If you obfuscate any information requested, I will obfuscate my response. These are virtual UUIDs, not real ones.
Kingpin
Posts: 2
Joined: 6. Jun 2016, 08:48

Re: Cannot ping or scan Windows guests from Linux Guests

Post by Kingpin »

That's it all right
thanks
:D

So, in penetration testing, you would assume that the person using a windows machine (home user) would have the file / printer sharing on, which seems to turn on ICMPv4 by default
Or was part of a domain with rules set for ping reply / ICMPv4
In order to get any reply
Post Reply