virtualbox.org

I am doing some practice pentesting in a virt environ
Running the latest version of VirtualBox
I have set up a number of virtual machines, linux, windows, windows server
After trialing various network modes, host only, NAT, i settled (or thought I did) on NAT Network
I have discovered that with all machines on NAT Network, I can scan from Kali Linux to OWASP BWA and Metasploitable.

I cannot seem to scan or ping any of the windows machines, Win7 or Win10 from the Kali box.
Is this a known thing?
I can go the other way, the Win7 and 10 can see and ping the Kali box
All using the NAT network default DHCP setup on 10.0.2.xxx/24

IF i turn off the Windows firewalls, they respond to ping and they are visible to scan... which defeats the purpose somewhat of trying to assess and practice pen test

Maybe this is normal? Firewalls dropping packets entirely, but I would think that being on the same LAN, machine firewalls wouldn't normally behave this way?
i.e. on my non VirtualBox LAN - I can ping my machines even with firewalls in place....

Kingpin wrote:IF i turn off the Windows firewalls, they respond to ping and they are visible to scan

Yes, because the firewall is blocking pings.

1. Choose your favorite search engine.
2. Ask the question "enable ping reply".
3. Enjoy the reading

That's it all right
thanks


So, in penetration testing, you would assume that the person using a windows machine (home user) would have the file / printer sharing on, which seems to turn on ICMPv4 by default
Or was part of a domain with rules set for ping reply / ICMPv4
In order to get any reply