Browse Definitions:

ping strangeness

Ping strangeness is a term used in troubleshooting to describe the incidence of an unusual pattern of ICMP ECHO_REQUEST packets being sent to a specific network node or an unusual number of error messages returning.

Ping (Packet Internet Groper) is a utility program that allows a user or program to verify that a particular IP address exists and can accept requests. Ping can be used as an alternative to the traceroute utility to troubleshoot network connectivity and latency issues. It is faster than traceroute and generates less network traffic.

When a user issues a ping request, the program formats an ICMP ECHO_REQUEST packet and sends it to a designated target address. If the remote IP address is active, it responds with an ICMP ECHO_REPLY packet. Ping then uses the timestamp of the Echo Reply to calculate a round-trip time and gauge response time.

If the target address is unavailable or something else is not working normally, Ping will report an error. Common errors include Destination Unreachable, Unknown Host and Request Timed Out.

When there is an unusual pattern of ICMP ECHO_REPLY packets being sent to the same server in the same time period, or there is an unusual number of error messages, this "strange" pattern is worth investigating. It could be that Ping is being used to carry out a denial of service attack (DoS) or look for attack vectors.

This was last updated in September 2017

Start the conversation

Send me notifications when other members comment.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Please create a username to comment.


File Extensions and File Formats

Powered by:


  • risk map (risk heat map)

    A risk map, also known as a risk heat map, is a data visualization tool for communicating specific risks an organization faces.

  • internal audit (IA)

    An internal audit (IA) is an organizational initiative to monitor and analyze its own business operations in order to determine ...

  • pure risk (absolute risk)

    Pure risk, also called absolute risk, is a category of threat that is beyond human control and has only one possible outcome if ...


  • federated identity management (FIM)

    Federated identity management (FIM) is an arrangement that can be made among multiple enterprises to let subscribers use the same...

  • cross-site scripting (XSS)

    Cross-site scripting (XSS) is a type of injection security attack in which an attacker injects data, such as a malicious script, ...

  • firewall

    In computing, a firewall is software or firmware that enforces a set of rules about what data packets will be allowed to enter or...



  • business continuity and disaster recovery (BCDR)

    Business continuity and disaster recovery (BCDR) are closely related practices that describe an organization's preparation for ...

  • business continuity plan (BCP)

    A business continuity plan (BCP) is a document that consists of the critical information an organization needs to continue ...

  • call tree

    A call tree -- sometimes referred to as a phone tree -- is a telecommunications chain for notifying specific individuals of an ...


  • volume manager

    A volume manager is software within an operating system (OS) that controls capacity allocation for storage arrays.

  • external storage device

    An external storage device, also referred to as auxiliary storage and secondary storage, is a device that contains all the ...

  • NetApp SolidFire

    NetApp SolidFire is a business division of NetApp Inc. that specializes in all-flash storage systems.


  • hybrid hard disk drive (HDD)

    A hybrid hard disk drive is an electromechanical spinning hard disk that contains some amount of NAND Flash memory.