Sniffing with wireshark, I see a bunch of ARP, ICMP, DNS requests.

So why in the official doc it’s written this:

​

> The list scan is a degenerate form of host discovery that simply lists

> each host of the network(s) specified, without sending any packets to

> the target hosts. By default, Nmap still does reverse-DNS resolution

> on the hosts to learn their names. It is often surprising how much

> useful information simple hostnames give out. For example, fw.chi is

> the name of one company’s Chicago firewall. Nmap also reports the

> total number of IP addresses at the end. The list scan is a good

> sanity check to ensure that you have proper IP addresses for your

> targets. If the hosts sport domain names you do not recognize, it is

> worth investigating further to prevent scanning the wrong company’s

> network.

>

> Since the idea is to simply print a list of target hosts, options for higher level functionality such as port scanning, OS detection, or

> host discovery cannot be combined with this. If you wish to disable

> host discovery while still performing such higher level functionality,

> read up on the -Pn (skip host discovery) option.

​