Marco Barbero wrote: > Hi, > Since I have to use Nessus against a network protected by a > firewall/IPS, I need to configure a delay between checks. Read on ML > archive suggestion from Renaud for Nessus2
If you are scanning many hosts, I'd consider setting your max hosts per scan setting high, and your max checks per scan setting low, perhaps to 1. Also, I'd ask what your technical requirement is? Did your firewall or IPS vendor ask for 10 seconds between checks, or are you more concerned about total bandwidth or simultaneous connections. Also, if you are having impact on the firewall's performance, perhaps it is because it is logging all of the probes being performed. Setting your max hosts to 1 and max checks to 1 will perform a very slow scan, although your port scan (if you are port scanning) will still put a spike of connections out there. Ron Gula, CTO Tenable Network Security http://www.tenablesecurity.com http://blog.tenablesecurity.com _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
