I’m looking for some advice and information on Internal PCI scanning.
I have installed Greenbone Virtual Appliance (Openvas) to pass internal PCI scanning. I have spent along time searching (and failing) to find what ports i need to scan in order to pass the PCI DSS 3.2.1 requirements. I can scan all 65k TCP & UDP ports but that scan takes days to complete and is not practical.
Do i need to scan all ports or can i scan all IANA TCP & UDP ports?
All comment and inputs are welcome.