DNS discoveries allow you to scan assets without requiring authentication or any other specific configuration. However, they are not exhaustive and are relatively slow compared to authenticated discoveries.

If your IT infrastructure uses internal DNS zones that you wish to scan, for example those of an Active Directory domain controller, please make sure your Cyberwatch sources are configured to use them, which is generally the case with DHCP.

Reverse DNS

It is conventional to associate a domain name with each IP to identify it, using PTR DNS records. They are queryable by issuing a reverse DNS lookup.

Reverse DNS discoveries will perform a reverse DNS lookup for each IP address in a range, and list all the IP addresses with an associated domain name as discovered assets.

To create a reverse DNS discovery:

  1. Go to Discoveries, and click Add then click Reverse DNS in the Reverse DNS category
  2. Fill field Target with the IP range you wish to scan, for example 10.10.1.0/24
  3. Click Confirm

The discovery data will be processed in the background and the results available from Discoveries as soon as the task is complete.

Back to top

English Français Español