02-06-2019 05:52 AM
I have a customer looking at implement ISE, and they have a very large network (300K endpoint).
They are concerned about enabling the NMAP probe to avoid possible issues on the network, and have asked me to verify if there are protection mechanisms in ISE to avoid running too many NMAP scans, and also what are the performances on the PSN in terms of how man scans they can run on the ISE side.
Do we have those information?
Thanks
Francesca
Solved! Go to Solution.
02-06-2019 02:15 PM
NMAP performance issue only manifests it self if ran manually for a large subnet. I suggest not doing any manual scan then ISE would only scan conditionally for single endpoints per profiler policy to gain more insights about the endpoint.
02-06-2019 02:15 PM
NMAP performance issue only manifests it self if ran manually for a large subnet. I suggest not doing any manual scan then ISE would only scan conditionally for single endpoints per profiler policy to gain more insights about the endpoint.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide