Hello, I tested with multiple interfaces and seems to work OK, tested in combination with -a option. The only issue that was leading to confusion was the port scanner modules (openvas_tcp_scanner.c), which are NOT setting the source addr given by -S, so part of the traffic still goes as the primary source address.
Thanks for the tip! Thanks, Chandra. > -----Original Message----- > From: Tim Brown [mailto:t...@openvas.org] > Sent: Wednesday, November 04, 2009 5:44 PM > To: openvas-devel@wald.intevation.org; ge...@galitz.org > Cc: 'Srinivasa NL'; Chandrashekhar B; 'Jan-Oliver Wagner' > Subject: Re: [Openvas-devel] openvasd -S option > > On Wednesday 04 November 2009 11:36:38 Geoff Galitz wrote: > > Here is a quote from the old nessusd man page: > > > > > >------------------------------------------------------------- > ---------- > >---- > >------------------ ____ Force the source IP of the connections > >established by Nessus to __ checks need to fully establish a > >connection to the remote host. This option is only useful > if you have > >a multi-homed machine with multiple public IP addresses > that you would > >like to use instead of the default one. Example : will make > establish > >connections with a source IP of one among those listed > above. For this > >setup to work, the host running nessusd should have > multiple NICs with > >these IP addresses set > > > > > >------------------------------------------------------------- > ---------- > >---- > >------------------- > > > > Experimenting with -S without those multiple NICs would > probably yield > > inconclusive results. > > Totally agree. This is not about spoofing, this is about > selecting the right source IP address if you have something > like eth0, eth0:1, eth0:2 set up. If it doesn't work in this > circumstance then it is broken and needs to be fixed. > > Tim > -- > Tim Brown > <mailto:t...@openvas.org> > <http://www.openvas.org/> _______________________________________________ Openvas-devel mailing list Openvas-devel@wald.intevation.org http://lists.wald.intevation.org/mailman/listinfo/openvas-devel
