nanog mailing list archives
Re: Network scan tool/appliance horror stories
From: Andreas Ott <andreas () naund org>
Date: Mon, 29 Oct 2012 22:47:12 -0700
On Mon, Oct 29, 2012 at 12:10:40PM -0700, Pedersen, Sean wrote:
We're evaluating several tools at the moment, and one vendor wants to dynamically scan our network to pick up hosts - SNMP, port-scans, WMI, the works. I was curious if anyone had any particularly gruesome horror stories of scanning tools run amok.
Check your netmask on the to-be-discovered network and what the rate of discovery is. I have seen internal systems attempt to scan and discover nodes in a /16 and promptly set off a flood of alarms on all PDUs (6 per rack) and plenty of other devices that thought they are being attacked. -andreas
Current thread:
- Re: Network scan tool/appliance horror stories, (continued)
- Re: Network scan tool/appliance horror stories Bacon Zombie (Oct 29)
- Re: Network scan tool/appliance horror stories Jared Mauch (Oct 29)
- Re: Network scan tool/appliance horror stories Paul Thornton (Oct 29)
- Re: Network scan tool/appliance horror stories Bacon Zombie (Oct 29)
- Re: Network scan tool/appliance horror stories Dan White (Oct 29)
- RE: Network scan tool/appliance horror stories Jones, Barry (Oct 30)
- RE: Network scan tool/appliance horror stories Chuck Church (Oct 30)
- RE: Network scan tool/appliance horror stories Jones, Barry (Oct 30)
- RE: Network scan tool/appliance horror stories Jones, Barry (Oct 30)
- RE: Network scan tool/appliance horror stories Rutis, Cameron (Oct 29)
- Re: Network scan tool/appliance horror stories Ryan Malayter (Oct 29)
- Re: Network scan tool/appliance horror stories nick hatch (Oct 29)
- Re: Network scan tool/appliance horror stories Andreas Ott (Oct 29)
- Re: Network scan tool/appliance horror stories Dan Snyder (Oct 30)