Nmap is a great tool for network forensics. Remember to use this tool with digression since it can probe ranges of IP/Subnets and ports opened or filtered on them. Rule of thumbs is it's not nice to run on ranges not on your network or not owned by you.
nmap -sS -PS80 -iR 0 -p 80 220.127.116.11/27 –exclude 18.104.22.168 , 22.214.171.124-127
nmap -sP 192.168.1.0/24