A few days ago I downloaded the virtual CGE 6.0.2. I have successfully performed a scan on an internal /24 subnet and the feed status is current.
Now I am trying to scan a public subnet for a different Company site, but I cannot get the scan to continue on these IPs, which do not respond to “pings”. I found someone else posting this same issue, but I do not understand the justification posted in that thread for it being closed without answer, so I ask in a new thread with more details.
My target is setup as:
Port List: All TCP and Nmap 5.51 top 1000 UDP
Alive Test: Consider Alive
My scan to this target is setup as:
Scanner: OpenVAS Default
Scan Config: Full and fast
When watching on my firewall for traffic at the OpenVAS scanner site, I only see the OpenVAS VM trying to ping the target IPs and nothing else. And then the scan stops.
However, when I create a special rule on the destination side to permit ping from the public IP address the scan comes from, then the scan does proceed and I’m seeing the many, many ports all being scanned.
Am I missing a step to permit the scan to proceed even if the destination hosts will not respond to a ping? I thought it was the “Consider Alive” setting on the target, but perhaps I have missed something?