Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2301
Views
0
Helpful
2
Replies

Custom NMAP scans failing due to bad syntax from ISE

DGibson175
Level 1
Level 1

‎08-10-2020 11:28 AM

Hi, 

I've been trying to configure some custom NMAP scans for device profiling.  From looking at some debug output, it looks as though the nmap command (created by ISE, and passed to the NMAP process) has an incorrect syntax, so NMAP quits without executing the scan.  I simply want to scan 5 UDP ports on a speaker, but no scan traffic makes it to the speaker - or even leaves the interface on the ISE appliance.

We have tried on 2.6 patch 2, 3, 5, and 7.  So far no luck.

 

Here is the log output, any help is appreciated!

2020-08-06 11:01:05,163 WARN   [SubnetScanner][] cisco.profiler.probes.nmap.NmapCmdExecuter -::- Error #485: Your port specifications are illegal.  Example of proper form: "-100,200-1024,T:3000-4000,U:60000-"

2020-08-06 11:01:05,163 WARN   [SubnetScanner][] cisco.profiler.probes.nmap.NmapCmdExecuter -::- QUITTING!

0 Helpful
2 Replies 2

Colby LeMaire
VIP Alumni
VIP Alumni

‎08-10-2020 03:52 PM

Can you post a screenshot of your custom NMAP scan action and its settings?

0 Helpful

DGibson175
Level 1
Level 1
In response to Colby LeMaire

‎09-04-2020 11:08 AM

Hi, sorry for the late reply, I didn't see a notification that somebody had answered.

So just an update, we opened a TAC case, and Cisco has acknowledged that it is a bug.  A new bug ID was created to track the issue.

Thanks,

 

0 Helpful
Customers Also Viewed These Support Documents