How to restrict specific IP address to use specific port only in ServiceNow Discovery

Mohit23
Tera Contributor

‎12-18-2024 09:52 PM

Query :- How to restrict specific IP address to use specific port only in ServiceNow Discovery

 

Sometime we have observe that Network devices should use only SNMP protocol, but some of the network devices are responding to SSH port as well, because of that some network devices gets discover/ Classify as Linux servers.

So we want to restrict the specific IP to use only specific ports while discovery is running.

 

Please share your thoughts if this is feasible.

 

Thank you very much. 

0 Helpfuls
  • 596 Views
5 REPLIES 5

Runjay Patel
Giga Sage

‎12-18-2024 10:20 PM

Hi @Mohit23 ,

 

You can not control it from ServiceNow end but you can control from network side.

Network devices default use SNMP protocol as respective ports are found open, if you block the port then it will look for other like SSH port .

 

-------------------------------------------------------------------------

If you found my response helpful, please consider selecting "Accept as Solution" and marking it as "Helpful." This not only supports me but also benefits the community.


Regards
Runjay Patel - ServiceNow Solution Architect
YouTube: https://www.youtube.com/@RunjayP
LinkedIn: https://www.linkedin.com/in/runjay

-------------------------------------------------------------------------

0 Helpfuls

Mohit23
Tera Contributor
In response to Runjay Patel

‎12-19-2024 02:56 AM

Hi @Runjay Patel  

Thank you for your response, But there are certain Network devices in our environment which Network team cannot block the port 22 at there end and even there is no firewall between MID servers and network devices since those are in same domain, so we were thinking to restrict the ports at Discovery level.

 

 

0 Helpfuls

Runjay Patel
Giga Sage
In response to Mohit23

‎12-19-2024 03:16 AM

are you getting any error?

0 Helpfuls

AndersBGS
Tera Patron
Tera Patron

‎12-18-2024 10:22 PM

Hi @Mohit23 ,

 

Please notice that after first successfully scan it will have an IP affinity rule for default port.  

 

If my answer has helped with your question, please mark my answer as accepted solution and give a thumb up.

 

Best regards

Anders

If my answer has helped with your question, please mark my answer as the accepted solution and give a thumbs up.

Best regards
Anders

Rising star 2024
MVP 2025
linkedIn: https://www.linkedin.com/in/andersskovbjerg/

0 Helpfuls