How can GB be implemented in a DHCP network where ip of a host changes?
Can the reports be co-relate to the exacthost?
A help on this matter will be great.
When using Greenbone in a DHCP environment you risk the losing track of the asset’s vulnerability timeline. Obviously you can create a scan with a target IP range such as 192.168.1.0/24 and scan any online systems within the range (note your alive test). Doing this will identify vulnerabilities for all detected systems.
However, if the system’s IP address changes, there is no way to currently track those changes. You could use static IP addressing for your network if you want to track the vulnerability changes over time.
I can add to this post: Many DHCP routers have a featured called “Address Reservation” which allows you to reserve an IP address for a specific client. That MAC address will always receive the same IP address each time when it accesses the DHCP server. This will sort of allow the best of both worlds.
1 Like