Feb-01-2019, 01:54 PM
(This post was last modified: Feb-01-2019, 01:55 PM by TheRealNoob.)
(Feb-01-2019, 10:56 AM)perfringo Wrote: It this real life scenario? My 'back-of-the-napkin' calculation gives that range 10.0.0.0-11.0.0.0 should be around 256 * 256 * 256 = 16,77M ip addresses. You want to write it to .csv file?
I can say that the chances of bumping into a /7 network range are very close to zero. Also because the IPs need to be contiguous. So basically, if there is only one missing IP at any point of the range, the list would be split.
My list come out of a vulnerability scanner (Qualys by the way). It is telling me the IPs that have been scanned. Just that the scanner ingests CVS files, but then gives back those "-" separated ranges, making things hard if I want to check what was scanned, generate reports, repeat the scan, etc.
Let's say I look at the 10.0.0.0-11.255.255.255 range (so a I have addresses in the whole /7 range), but the only missing IP is 10.255.255.255.
In that case, the output from the scanner would be: 10.0.0.0-10.255.255.254,11.0.0.0-11.255.255.255
Very very unlikely, but theoretically it could happen.
In real life, I honestly do not expect to see anything larger than a /22 range. So I would say that just checking the last 2 octets (making it a /16 range) would make me feel very safe.