I have have multiple network segmentations on my network. Each segmentation is created via my firewall with a "trust" level. The highest trust level can see all segmentations below it. The lower trust levels can see lower trust levels, but they can't see the network in a higher trust level. We are running an Active Directory server.
I am running Netscan from a LOWER trust level to a HIGHER trust level to see if I can actually obtain any information. As expected I am not able to get any useful information except there are 4 items that I am curious about. I can see the HostName and LAN Group. I am assuming that is from my AD server. I can also see the MAC Address and the NIC Card Vendor. I am not sure how that is possible if I can't actually reach the machines. Where is Network Scanner getting the HostName, LAN Group, MAC Address, and NIC Vendor from?