Hello all.
First I would like to say I appsoluly love this project. Nessus is a wonderful tool.
I'm trying to be creative and deny close to 60 host from being scanned during our audits. I want to utilize the nessusd.rules file keep track rather then having to brake apart my subnets when inputting them for the audit.
I'm trying to figure out why my scan is hanging with error "E2002 - These hosts could not be tested because you are not allowed to do so." after adding deny addresses to the nessusd.rules file. I want to scan the subnet and have purposely denied IP address. Should I be using reject instead of deny? Is their an error log I should be looking at.
My scan works flawlessly until it hits a deny host and then just stops.
Nessus 3.0.3 on FC5, NessusWX 1.4.5 on XP SP2
nessusd.rules looks looks like.
#
# Nessus rules
#
# Syntax : accept|reject address/netmask
# Accept to test anything :
deny xxx.xxx.xxx.101
deny xxx.xxx.xxx.102
deny xxx.xxx.xxx.103
deny xxx.xxx.xxx.104
deny xxx.xxx.xxx.105
deny xxx.xxx.xxx.106
deny xxx.xxx.xxx.107
deny xxx.xxx.xxx.108
deny xxx.xxx.xxx.109
deny xxx.xxx.xxx.110
deny xxx.xxx.xxx.111
deny xxx.xxx.xxx.112
deny xxx.xxx.xxx.113
deny xxx.xxx.xxx.114
deny xxx.xxx.xxx.115
deny xxx.xxx.xxx.116
deny xxx.xxx.xxx.117
deny xxx.xxx.xxx.118
deny xxx.xxx.xxx.119
deny xxx.xxx.xxx.120
default accept
deny xxx.xxx.xxx.102
deny xxx.xxx.xxx.103
deny xxx.xxx.xxx.104
deny xxx.xxx.xxx.105
deny xxx.xxx.xxx.106
deny xxx.xxx.xxx.107
deny xxx.xxx.xxx.108
deny xxx.xxx.xxx.109
deny xxx.xxx.xxx.110
deny xxx.xxx.xxx.111
deny xxx.xxx.xxx.112
deny xxx.xxx.xxx.113
deny xxx.xxx.xxx.114
deny xxx.xxx.xxx.115
deny xxx.xxx.xxx.116
deny xxx.xxx.xxx.117
deny xxx.xxx.xxx.118
deny xxx.xxx.xxx.119
deny xxx.xxx.xxx.120
default accept
Thanks,
Jeff
_______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
