Option
Metric
Description
If you configure more than one route to the same segment for one perspective, a number that indicates the preferred route. The closer to 1, the more preferred the route.
Note: The numbers you use do not have to be consecutive.
5.Click Save Changes.
Section B: Policy configuration
This section explains how to configure policy settings in order to manage vulnerabilities.
Defining assets for a discovery scan
Use the Discovery policy type on the Policy Management page on the appliance to configure a policy that defines the parameters used to perform a discovery scan on a portion of a network.
Before you begin
Before it can perform OS fingerprinting on an asset, your agent must find one open and one closed port. To find an open and a closed port, the agent scans ports
About this task
In a discovery task, a range of IP addresses is scanned to locate active network interfaces, and the type of device associated with each active network interface is determined through OS identification.
Procedure
1.Click Scan → Policy Management in the navigation pane.
2.Select Discovery from the Policy Types list, and then click Add.
3.Type a name for the scan policy.
4.Type the IP addresses (in
v Type an IP address, and then press ENTER.
vType a range of IP addresses, and then press ENTER. Example:
vType a combination of both choices above, and then press ENTER.
Note: A red box appears around the IP range(s) to scan box until the data is validated.
5.If you want to ping each IP address before scanning to exclude unreachable hosts from the scan, select the Ping hosts in this range, before scanning, to exclude unreachable hosts check box.
6.If you want to add newly discovered assets to the group where you have defined the scan, rather than to the Ungrouped Assets group, select the Add newly discovered assets to group check box.
