Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1531
Views
0
Helpful
1
Replies

Nessus scanning

onslaught99
Level 1
Level 1

‎12-07-2010 07:27 AM - edited ‎03-11-2019 12:19 PM

Hello,

We recently acquired the Virtual Nessus scanner and have it sitting on a server "inside" our ASA firewall. I want to verify what port(s) that the Nessus needs to go "outside" our firewall to scan other locations. Just curious if it will need a certain TCP or UDP port to reach out or do I have to open the firewall up completely. I do not want to open up the firewall to everything just to allow the scanner to run. Any input would be appreciated.

Thanks

Labels:
0 Helpful
1 Reply 1

Panos Kampanakis
Cisco Employee
Cisco Employee

‎12-07-2010 10:24 AM

I am not sure what ports Nessus uses to call home.

But .you should only allow ports going to your server from the outside (outside ACL) that you want (for example web if the server is using web). Then all inbound traffic (initiated from outside) will be blocked unless the services you want. Inside initiated conns from Nessus will still work.

I hope it helps and makes sense.

PK

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card