Services discovered by Automation Gateway are listed in the Lighthouse web UI, under CONFIGURE > Automation Gateway > Devices > Discovered Services. When an HTTP or HTTPS service has been discovered, it may also be accessed via this page.
When a node has been activated for Automation Gateway, it begins to discover remote services. The discovery process is initiated by Lighthouse, and runs every 10 minutes.
Each time the discovery process is initiated, the node runs an nmap script scan against all IPv4 connections belonging to the node's LAN firewall zone.
Note: Large logical networks with address space larger than 254 hosts (i.e. with a minimum netmask of /24 or 255.255.255.0) are excluded from the scan.
The nmap scan runs the default (non-intrusive) suite of nmap NSE scripts. These can be listed by running the following command on a node that has been activated for Automation Gateway:
sudo docker exec ag-remote cat /usr/share/nmap/scripts/script.db | awk -F\" '/"default"/ { print $2 }'
As at Automation Gateway 1.2, the list of discovery scripts is:
address-info.nse
afp-serverinfo.nse
ajp-auth.nse
ajp-methods.nse
amqp-info.nse
auth-owners.nse
backorifice-info.nse
bitcoinrpc-info.nse
cassandra-info.nse
clock-skew.nse
creds-summary.nse
dns-nsid.nse
dns-recursion.nse
dns-service-discovery.nse
epmd-info.nse
finger.nse
flume-master-info.nse
freelancer-info.nse
ftp-anon.nse
ftp-bounce.nse
ftp-syst.nse
ganglia-info.nse
giop-info.nse
gopher-ls.nse
hadoop-datanode-info.nse
hadoop-jobtracker-info.nse
hadoop-namenode-info.nse
hadoop-secondary-namenode-info.nse
hadoop-tasktracker-info.nse
hbase-master-info.nse
hbase-region-info.nse
hddtemp-info.nse
hnap-info.nse
http-auth.nse
http-cisco-anyconnect.nse
http-cookie-flags.nse
http-cors.nse
http-favicon.nse
http-generator.nse
http-git.nse
http-ls.nse
http-methods.nse
http-ntlm-info.nse
http-open-proxy.nse
http-robots.txt.nse
http-svn-enum.nse
http-svn-info.nse
http-title.nse
http-webdav-scan.nse
ike-version.nse
imap-capabilities.nse
imap-ntlm-info.nse
ip-https-discover.nse
ipv6-node-info.nse
irc-info.nse
iscsi-info.nse
jdwp-info.nse
knx-gateway-info.nse
maxdb-info.nse
mongodb-databases.nse
mongodb-info.nse
ms-sql-info.nse
ms-sql-ntlm-info.nse
mysql-info.nse
nat-pmp-info.nse
nbstat.nse
ncp-serverinfo.nse
netbus-info.nse
nntp-ntlm-info.nse
ntp-info.nse
openlookup-info.nse
p2p-conficker.nse
pop3-capabilities.nse
pop3-ntlm-info.nse
quake1-info.nse
quake3-info.nse
quake3-master-getservers.nse
rdp-ntlm-info.nse
rmi-dumpregistry.nse
rpcinfo.nse
rtsp-methods.nse
servicetags.nse
sip-methods.nse
smb-os-discovery.nse
smb-security-mode.nse
smb2-security-mode.nse
smb2-time.nse
smtp-commands.nse
smtp-ntlm-info.nse
snmp-hh3c-logins.nse
snmp-info.nse
snmp-interfaces.nse
snmp-netstat.nse
snmp-processes.nse
snmp-sysdescr.nse
snmp-win32-services.nse
snmp-win32-shares.nse
snmp-win32-software.nse
snmp-win32-users.nse
socks-auth-info.nse
socks-open-proxy.nse
ssh-hostkey.nse
sshv1.nse
ssl-cert.nse
ssl-date.nse
ssl-known-key.nse
sslv2.nse
sstp-discover.nse
telnet-ntlm-info.nse
tls-alpn.nse
tls-nextprotoneg.nse
ubiquiti-discovery.nse
upnp-info.nse
ventrilo-info.nse
vnc-info.nse
wdb-version.nse
weblogic-t3-info.nse
wsdd-discover.nse
x11-access.nse
xmlrpc-methods.nse
xmpp-info.nse
Comments
0 comments
Article is closed for comments.