I am trying to designate 6 servers as NMAP Scan Points, but only two are showing as relevant candidates. These are Windows 2003 servers. Is there some criterion beyond having the client, to allow a computer to be a potential scan point?
(it = “Win2000” OR it = “WinXP” OR it = “Win2003” OR it = “WinXP-2003”) of name of operating system
Relevance 4
(not exists folder “BESScanner-NMAP\NMAP” of it OR not exists file “nmap.exe” of folder “BESScanner-NMAP\NMAP” of it) of parent folder of regapp “BESClient.exe”
Relevance 5
(not exists file “besnpf.sys” whose (version of it >= “4.0.0.1040”) of it) of folder (pathname of (if x64 of operating system then system x64 folder else system folder) & “\drivers”)
I have tested the nmap tool on Win2008R2 with much success on my personal test systems. My Scan point system acts as my router to the dmz network… thus there are two NICs installed. I only wanted to scan one of them and thus designated the specific ip range from the “Run Nmap Scan” task. I did have to modify the relevance for the following two tasks to get this to work.
“Designate Nmap Scan Point” task:
Changes made::
added Win2008R2
Relevance AND Success Criteria::
(((((if (name of operating system starts with “Win”) then platform id of operating system != 3 else true) AND (version of client >= “6.0”)) AND ((it = “Win2000” OR it = “WinXP” OR it = “Win2003” OR it = “WinXP-2003” OR it = “WinVista” OR it = “Win2008” OR it = “Win2008R2” OR it = “Win7”) of name of operating system)) AND ((not exists folder “BESScanner-NMAP\NMAP” of it OR not exists file “nmap.exe” of folder “BESScanner-NMAP\NMAP” of it) of parent folder of regapp “BESClient.exe”)) AND (if (name of operating system = “Win2000”) then service pack major version of operating system = 4 else true)) AND (not exists key “HKEY_LOCAL_MACHINE\SOFTWARE\BigFix\EnterpriseClient\BESScanner-NMAP” of x32 registry)
“Run Nmap Scan” task:
Changes made::
added Win2008R2, and removed the NIC counter section (removed Relevance 4)
Relevance::
((((((if( name of operating system starts with “Win” ) then platform id of operating system != 3 else true) AND (version of client >= “6.0”)) AND ((it = “Win2000” OR it = “WinXP” OR it = “Win2003” OR it = “WinXP-2003” OR it = “WinVista” OR it = “Win2008” OR it = “Win2008R2” OR it = “Win7”) of name of operating system)) AND (number of (unique values of (subnet addresses whose (it as string != “0.0.0.0”) of ip interfaces whose (loopback of it = false) of network as string)) = 1)) AND ((exists folder “BESScanner-NMAP” of it AND exists file “nmap.exe” of folder “BESScanner-NMAP\NMAP” of it) of parent folder of regapp “BESClient.exe”)) AND ((number of bits (0;1;2;3;4;5;6;7) whose (it) of ( it as integer ) of ( if it contains “.” then preceding text of first “.” of it else it ) of ( it; following texts of substrings “.” of it ) of ( unique values of (subnet masks of ip interfaces whose (loopback of it = false) of network as string ) as string) ) >= 22)) AND (exists key “HKLM\Software\WinPcap” of x32 registry)