Port Exclusions
Creating an Exclusion List
-
Go to
(Menu) > CERT+ > CERTIFICATE
DISCOVERY > Discovery Configuration > Excluded
Ports.
The Excluded Ports page is displayed. -
Click + Create.
The Add page is displayed.
-
Enter/Select the exclusion list details.
Important: Maximum of 5000 exclusion list is allowed.
Table 1. Field descriptions for the exclusion list details Field Description *Excluded Ports Name Enter a name for the exclusion list. Important: This field does not support special characters.Description Add a short description with the reason to be excluded. Network Setting Select a network setting to enforce this excluded network across all associated networks. The available options are: - All
- Custom.
*Select Settings Select the network settings that applies to this entry. Note: This field appears when Network Setting = Custom.*Exclusion By From the dropdown list, from the following options, select the source of the exclusion list: - Custom: Lets you enter a list of the Port addresses and/or subnets to be excluded from the network scan.
- Upload: Lets you upload a file that has
the IP addresses and/or subnets to be excluded
from the network scan
Acceptable file formats: .xlsx, .xls, .csv
Important: To view a sample exclusion list file:- From this dropdown list, select
Upload.
The Upload File field is displayed.
- From below the Upload File field, click
Download Sample Template.
The sample template will be downloaded to your system.
- From this dropdown list, select
Upload.
*Excluded Ports This field is displayed if Exclusion By = Custom. Enter a valid port numbers between 1 to 65535.
*Browse This field is displayed if Exclusion By = Upload. To upload a .xlsx/.xls/.csv file that has the exclusion list:- Click Upload.
- Navigate to the location of the file.
- Select the required file.
- Click Open.
Important: To view a sample exclusion list file:- From below the Upload File field, click
Download Sample Template.
The sample template will be downloaded to your system.
*: Mandatory fields -
Click Add.
The table below the fields is populated with entries from the Exclusion List/file uploaded with the exclusion list.
- Click Save.
Disabling an Exclusion List
By default, exclusion lists are enabled as soon as they are created. Which means that when a network discovery operation is triggered, the results will exclude all the network sources that are a part of the exclusion lists. You can choose to disable an execution list so that it is not considered for the subsequent network discovery scans.
Additionally, you can enable selected disabled exclusion lists for a specific scan at the time of configuring the scan, by selecting the required list(s) from the Exclusion Lists dropdown list.
To disable an exclusion list:
-
Go to (Menu) > CERT+ > CERTIFICATE
DISCOVERY > Discovery Configuration > Excluded
Ports.
The Excluded Ports page is displayed.
-
From the exclusion list inventory, under Status, move the radio
button to left that you want to disable.
The confirmation dialog box appears as Excluded Port Successfully Disabled.
Enabling an Exclusion List
To enable an exclusion list after it has been disabled:
-
Go to (Menu) > CERT+ > CERTIFICATE
DISCOVERY > Discovery Configuration > Excluded
Ports.
The Excluded Ports page is displayed.
-
From the exclusion list inventory, under Status, move the radio
button to right that you want to Enable.
The confirmation dialog box appears as Excluded Port Successfully Enabled.
Deleting an Execution List
-
Go to (Menu) > CERT+ > CERTIFICATE
DISCOVERY > Discovery Configuration > Excluded
Ports.
The Excluded Ports page is displayed.
- From the exclusion list inventory, under Excluded Ports, select the checkbox(es) corresponding to the exclusion list(s) you want to delete.
-
From the menu bar, click
.
-
From the confirmation dialog box, click Submit.
The selected exclusion list(s) are deleted.Note: Default ports cannot be deleted.
