- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎08-15-2017 08:07 AM
We have multiple IP addresses located in multiple ranges that we are wanting to be excluded from being scanned by any schedule and if possibly even Quick Discovery, is this possible?
Solved! Go to Solution.
- Labels:
-
Discovery
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎08-15-2017 06:48 PM
Hi Curtis,
A little bit of a customization will be require to prevent a quick discovery or any discovery to take place over an IP that's within an exclusion list.
1- You will first need to define where do you want to store your exclusion list. You can choose to use the OOB table or you may want to create your own
2- You will need to modify the logic that executes the Discovery. Both, quick discovery and discovery schedules rely on the core script include Discovery to execute its discovery routines. You need to be careful and very much aware of what's you're doing when you're taking ownership of this script include since upgrades from ServiceNow over this script will be skipped, so you better make sure the review and required merges for each upgrade are done as needed. You may also want to choose to only affect the logic that involves the Quick Discovery, if so, you could choose to modify the UI page quick_discovery and/or script include DiscoveryAjax. Still, the same warning in regards taking ownership of the script applies.
Thanks,
Berny
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎08-15-2017 10:26 AM
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎08-15-2017 10:30 AM
This is the correct answer, but won't prevent an excluded IP being used in a Quick Discovery.
Edit: by any schedule, no. You either have to go to each discovery schedule which contains that IP in its range and add the exclusion, or on the exclusion table create entries which relate to the correct parent.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎08-15-2017 10:44 AM
In case certain IP's/IP ranges are critical and need to be barred from scanning you can request your internal security/firewall team to block discovery access.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎08-15-2017 06:48 PM
Hi Curtis,
A little bit of a customization will be require to prevent a quick discovery or any discovery to take place over an IP that's within an exclusion list.
1- You will first need to define where do you want to store your exclusion list. You can choose to use the OOB table or you may want to create your own
2- You will need to modify the logic that executes the Discovery. Both, quick discovery and discovery schedules rely on the core script include Discovery to execute its discovery routines. You need to be careful and very much aware of what's you're doing when you're taking ownership of this script include since upgrades from ServiceNow over this script will be skipped, so you better make sure the review and required merges for each upgrade are done as needed. You may also want to choose to only affect the logic that involves the Quick Discovery, if so, you could choose to modify the UI page quick_discovery and/or script include DiscoveryAjax. Still, the same warning in regards taking ownership of the script applies.
Thanks,
Berny
