Jari Myllymäki wrote: > Hey! > > I have a little proglem. I want to scan part of the enterprise network > where i´m working. And the scanning part of network should scan timed > eq. monday 4 pm to tuesday 5 am. > >
Possible a longer response than you were looking for, but I am sure this will generate some other feedback from Nessus users ... If this is a one-time audit and you are only scanning a few hosts, you can manually launch the scan at 4 PM and halt it when it is finished. If this is the first time you are scanning a network and you do not know what is out there, it is a good idea to be available in case your staff things they are under attack or if you impact a fragile system you might not know about ahead of time. Most Nessus clients don't have a concept of a scan window in them. If you are Ubuntu, you might simply start your scan at 4 PM and have a cron job issues a killall to all nessusd processes at 5 AM, but this is very and could leave you with an incomplete audit of your network. Scan window scheduling is a feature of the Security Center, but even so, I still advise our customers that if they can't complete a scan in the alloted time period, they should either add more Nessus scanners or reduce the workload of the scan. It even has a feature that if you have a window of time every day, it can spread the scan across that window until its done. Few organizations use this though because they want to know exactly when scans start and will be over. I would really suggest to start small and then gradually increase your number of targets so you understand the time and impact. There is also nothing preventing you from starting with multiple Nessus scanners and launching simultaneous scans. Ron Gula Tenable Network Security _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
