Cisco Cisco FirePOWER Appliance 7010
43-17
FireSIGHT System User Guide
Chapter 43 Configuring Active Scanning
Managing Scan Targets
Note that Nmap-supplied server and operating system data remains static until you run another Nmap
scan. If you plan to scan a host using Nmap, you may want to set up regularly scheduled scans to keep
any Nmap-supplied operating system and server data up to date. For more information, see
scan. If you plan to scan a host using Nmap, you may want to set up regularly scheduled scans to keep
any Nmap-supplied operating system and server data up to date. For more information, see
. In addition, note that if the host is deleted from the network map, any Nmap
scan results are discarded.
To run an on-demand Nmap scan:
Access:
Admin/Discovery Admin
Step 1
Select
Policies > Actions > Scanners
.
The Scanners page appears.
Step 2
Next to the Nmap remediation you want to use to perform the scan, click
Scan
.
The Nmap Scan Target dialog box appears.
Step 3
Optionally, to scan using a saved scan target, select a target from the
Saved Targets
drop-down list and
click
Load
.
The IP addresses and ports associated with the scan target populate the
IP Range(s)
and
Ports
fields.
Tip
To create a scan target, click
Edit/Add Targets
. For more information, see
Step 4
In the
IP Range(s)
field, specify the IP address for hosts you want to scan or modify the loaded list, up to
255 characters.
For hosts with IPv4 addresses, you can specify multiple IP addresses separated by commas or use CIDR
notation. You can also negate IP addresses by preceding them with an exclamation point (!). For
information on using CIDR notation in the FireSIGHT System, see
notation. You can also negate IP addresses by preceding them with an exclamation point (!). For
information on using CIDR notation in the FireSIGHT System, see
.
For hosts with IPv6 addresses, use an exact IP address. Ranges are not supported.
Step 5
In the
Ports
field, specify the ports you want to scan or modify the loaded list.
You can enter a port number, a list of ports separated by commas, or a range of port numbers separated
by a dash. For details on entering ports, see
by a dash. For details on entering ports, see
.
Step 6
Click
Scan Now
.
The Nmap server performs the scan.
Note that Nmap validates IP address ranges and displays an error message if the range is invalid. If this
occurs, correct the contents of the
occurs, correct the contents of the
IP Range(s)
field to indicate a valid IP address range.
Managing Scan Targets
License:
FireSIGHT