Overview
NMAP-scan is a command-line tool to discover and fingerprint IP hosts on the local network. The NMAP-scan (and other Network-scan plugin times using the SCAN_SUBNETS setting) time depends on the number of IP addresses to check so set this up carefully with the appropriate network mask and interface. Check the subnets documentation for help with setting up VLANs, what VLANs are supported, or how to figure out the network mask and your interface.
Note
The
NMAPDEVplugin is great for detecting the availability of devices, however ARP scan might be better covering multiple VLANS and subnets as NMAP can't pickup the MAC address from other subnets (this is an NMAP limitation) which are necessary to identify a device. You can always combine different scan methods. You can find all available network scanning options (marked as🔍 dev scanner) in the Plugins overview readme.
This plugin is not the best for name resolution (Use e.g.: NSLOOKUP, AVAHISCAN instead), however if available a name will be displayed in the Resolved Name column.
Usage
- Go to settings and set the
SCAN_SUBNETSsetting as per subnets documentation. - Enable the plugin by changing the RUN parameter from disabled to your preferred run time (usually:
schedule).- Specify the schedule in the
NMAPDEV_RUN_SCHDsetting
- Specify the schedule in the
- Adjust the timeout if needed in the
NMAPDEV_RUN_TIMEOUTsetting - If scanning remote networks you may want to enable the
NMAPDEV_FAKE_MACsetting. Please read the setting description carefully. - Review remaining settings
- SAVE
- Wait for the next scan to finish