Host-discovery scan

Hi,

I want to schedule monthly Host-discovery scan in our enviroment. I have a list of our internal vlans. Can someone give me advise which values are best for: port list and alive test, when I creat new target.
Thanks a lot

To my best experience this is nearly impossible to know ahead of time. I suggest to figure it out by trying the default values for both settings. (OpenVAS default port list and ICMP Ping)
I’'ll assume you have a general idea how many hosts and vhost you have in your system, if the scan results don’t add up, make the following changes:
If you have no hosts try a different alive test.
If there are some, but to few, try a combination of alive tests.

I hope this enables you to find a combination that worked for you.

Hi Tino, thanks for your reply. I have one more question. Our internal network has many subnets/DMZ,microDMZ, If I created this kind of scan i need to specify list of ports for new ACL for my network team. Is it possible to find somewhere/Greenbone knowledge base list of ports?

Thanks

Hi,

when choosing the category for a topic please try to have a look at the category description for each category first:

The current used category is/was https://community.greenbone.net/c/vulnerability-tests (Description: About the Vulnerability Tests category) which is about vulnerability tests (the so called “NASL scripts”).

Your question is completely unrelated to the NASL script itself but about scanning with GVM (or more specific with scanning techniques) so i have moved this topic into the better fitting https://community.greenbone.net/c/gse (Description: About the Source Edition (GSE) category).

Hi cfi, thanks a lot.