Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Info

These scans target the areas of your IT ecosystem that are exposed to the internet or are otherwise not restricted to your internal users or systems. They can include websites, ports, services, networks, systems, and applications that need to be accessed by external users or customers.

...

Company External Assets - Table of Contents

Table of Contents

...

External Scanning IP Addressing and Whitelisting

Tip

The IPs listed in the table below will also apply to External Scanning for whitelisting.

Global External Assets: Global External Assets

Company External Assets: Company External Assets

...

Region

...

POD Number

...

IP Address

...

Load Balancer IP’s

...

US

...

POD101

...

45.76.248.143

...

144.202.23.74

...

US

...

POD102

...

45.32.69.143

...

45.77.87.242

...

US

...

POD103

...

207.246.113.34

...

104.207.144.192

...

US

...

POD104

...

45.76.68.194

...

144.202.125.97

...

US

...

POD105

...

144.202.24.15

...

66.42.92.100

...

POD106

...

149.28.220.104

...

CA

...

POD200

...

137.220.53.230

...

155.138.140.251

...

UK

LONDON

...

POD300

...

192.248.165.83

...

209.250.225.16

...

EU

POLAND

...

POD400

...

70.34.242.6

...

64.176.69.126

...

EU

MADRID

...

POD401

...

65.20.107.136

...

65.20.103.34

...

AU

SYDNEY

...

POD500

...

45.77.234.109

...

139.180.161.236

...

AF

...

POD600

...

139.84.227.66

...

139.84.229.231

Check our Agent Whitelisting by POD/Regiondocument for details on IP’s used during external scanning from the ConnectSecure servers.

...

Company External Assets - Overview

External Asset is any asset ConnectSecure identifies outside the local network/firewall using parameters from your External Scan Profile(s).

...

Info

ConnectSecure has three default scanning options as default: Quick Scan, Detailed Scan, and Deep Scan Profiles.

...

Scan Type

Number of Ports

Source

Quick

1000

IANA

Detailed

3500

IANA

Deep

65535 (ALL)

IANA

...

Company External Assets - Details

The External Assets screen contains three main pages: Configurations, Profiles, and Results.

...

Configurations

...

This is where you can manage Configurations, which are the scanning parameters. This includes the Name, Address, Address Type, and Is Excluded options.

Use the three-dot Action menu to Edit Configuration, Remove Configuration, or Scan Now.

...

You can add Configurations by tapping the Add button or using the Bulk Upload option.

Manually Add

Tap the Add button and complete all required fields.

...

Bulk Upload

Tap the upload icon

...

Download the upload template, add your data, and come here to upload.

Info

External Assets Bulk Upload Template: https://portal.myconnectsecure.com/assets/files/endpoints.csv

...

Profiles

This is where you can manage Custom Profiles, with options to Add, Edit, or Delete. This includes the Name, Profile Type, Ports, Protocol, and Service Detections.

Info

Custom profiles are unnecessary for External Scans as the built-in Scan Profiles (Quick, Detailed, Deep) can be used.

See below for additional details.

Configurations

This is where you can manage Configurations, which are the scanning parameters. This includes the Name, Address, Address Type, and Is Excluded options.

...

.

...

Results

This is where you can view your Results from the external scan(s). This includes the IP, Host Name, Risk Score, Security Grade, Importance, Agent Type, Vulnerabilities, Severity, CISA Classified, EPSS Classified, Last Discovered, Last Scanned Time, Asset ID, Auto Tags, and Manual Tags.

See below for additional details.

Company External Assets - Side Navigation Toolbar Overview

image-20240202-164430.pngImage Removed

  1. Add Profile - tap here to add a new Custom Profile for external scanning

  2. Edit Profile - tap here to edit an existing Custom Profile; you must select one record first

  3. Remove Profile - tap here to remove a Custom Profile; must select at least one record

  4. Jobs - tap here to view the job history

  5. Alerts - tap here to view System Events, timeline-style

...

Profiles

This is where you can manage Custom Profiles, with options to Add, Edit, or Delete.

...

Info

Custom profiles are unnecessary for External Scans as the built-in Scan Profiles (Quick, Detailed, Deep) can be used.

Add

...

Complete all required fields marked by the red asterisks, then tap Save to complete.

Edit

You must select one existing Custom Profile using the checkbox next to the Name, then tap the Edit Profile to edit the details.

...

Tap Save when you are done with Edit details; otherwise, click Cancel to back out.

Delete

You must select one existing Custom Profile using the checkbox next to the Name, then tap Remove Profile to remove it permanently. You will have to tap on Yes in the Confirmation box to complete.

...

Configurations

This is where you can Add, Edit, or Delete Configurations, which are the external scan parameters. This includes the Name, Address, Address Type, and Exclude options.

Add

Tap the Add Configuration icon icon to create a new External Scan Endpoint record.

...

Complete the required fields, including Name, Address Type, Scan Profile, and optional for Port Exclusions, Tags, and Scan Later options.

...

Field

...

Description

...

Name

...

Displays the given name for the external scan endpoint name

...

Address

...

Displays the given name for the external can address name

...

Address Type

...

Displays the selected address type, which includes Static IP, Domain, and IP Range scan options.

...

Scan Profile

...

Select to associate your scan configuration with a scan profile; this tells your configuration what type of scan to do (Quick, Detailed, Deep, or Custom)

...

Ignore Ports

...

Input any ports you want to ignore, even if they are open, during an external scan

...

Tags

...

Tap the + icon to add a Name and Value to target only tags meeting the set criteria

For Tags to work, the Tag Name and Value must be entered exactly, without spaces.

For example, if the Tag appears as Asset Type: Workstation, then the Name field should be entered as Asset Type, and the Value field should be entered as Workstation.

...

Exclude From Scanning

...

Check the box if you want to exclude the configured options from external scans

...

Scan Later

...

Check the box if you wish to scan later; if not, the scan will initiate upon saving.

Edit

First, select any existing record, then tap Edit Configuration.

...

Tap Save to complete changes; otherwise, click Cancel to back out.

Remove

First, select at least one existing record, then tap the Remove Configuration icon.

...

Tap Yes on the Confirmation box to complete removal; otherwise, tap on Cancel to back out.

...

Scan Now

First, select at least one existing external scan endpoint record, then tap the Scan Now icon to begin the external scan.

...

You can view the progress/status of the external scan job under the Jobs icon.

Jobs

...

Tap on the IP to see additional details about the scan.

...

Tap on the Risk Score Letter Grade to see the score breakdown.

...

Info

We have a page dedicated to our Asset Risk Score grading and how to work out the math, which is found here: https://cybercns.atlassian.net/wiki/x/JoCZgQ

...

Company External Assets - Action Toolbar Overview

Jobs - tap to view the historical job(s) for the selected company

Alerts - tap to view the timeline-style System Events

Info - tap to view the V4 Getting Started In App Info

Help-Link - tap to view the online documentation for this page

...


Company External Assets - Action Toolbar Actions

Job

Tap the Jobs icon to view the external scan job history and current details. This includes the Created Date-Time Stamp, Scan Type, Job Status, and Description.

...

Full results are displayed in the Results section

...

Results

This is where you can view your Results from the external scan(s). This includes the IP, Host Name, Risk Score, Security Grade, Importance, Agent Type, Vulnerabilities, Severity, CISA Classified, EPSS Classified, Last Discovered, Last Scanned Time, Asset ID, Auto Tags, and Manual Tags.

...

The full external scan results include the Grade, Last Scanned Time, Vulnerability by Severity, SSL Attack Info, Remediation Plan Recommendations, and External Ports data.

...

Need Support?

Contact our support team by sending an email to support@connectsecure.com or by visiting our Partner Portal, where you can create, view, and manage your tickets.

...