06-27-2017 06:15 AM - edited 03-10-2019 06:52 AM
Running Firepower Management Center v6.2.0.2
I’m having 2 issues with NMAP and active discovery
First issue: Hosts discovered by NMAP are not being added to the network map. Only hosts discovered by passive discovery exist in the network map. Is there a way to have hosts discovered by NMAP added to the network map?
Second issue: NMAP is not correctly identifying the OS on some hosts. There are a number of windows 7 machines which are being incorrectly identified by NMAP as Server 2008 with 100% confidence. Is there a way to tune the NMAP to properly identify the OS on those hosts? If not is there a way to bulk update the OS on those hosts in FMC?
Thanks
Solved! Go to Solution.
07-12-2017 12:47 PM
I now see that it is not possible.
"A host must exist in the network map before Nmap can append its results to the host profile."
06-30-2017 12:45 PM
Hi pcnudde01
1. Did you configure the network for the NMAP scanned hosts in the "Network Discovery" policy?
2. No way of tuning NMAP. I guess that it is possible using the API to bulk update the OS on hosts, but I have not seen anything like that, yet.
07-12-2017 10:00 AM
Did you configure the network for the NMAP scanned hosts in the "Network Discovery" policy?
If you mean under Policies | Network Discovery | Advanced | OS and Server Identity Sources did I add an NMAP scanner then yes. There is no other place to configure NMAP scanning for network discovery policies.
07-12-2017 12:47 PM
I now see that it is not possible.
"A host must exist in the network map before Nmap can append its results to the host profile."
07-13-2017 06:08 AM
That's what I figured, thanks. So Cisco touting NMAP as active network discovery is misleading then since NMAP won't actually add hosts it finds to the network map. Seems like this would be an obvious thing to want to do and fairly simple to implement. Maybe I will put in a feature request.
Thanks for the info.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide