DNS discoveries allow you to scan assets without requiring authentication or any other specific configuration. However, they are not exhaustive and are relatively slow compared to authenticated discoveries.

If your IT infrastructure uses internal DNS zones that you wish to scan, for example those of an Active Directory domain controller, please make sure your Cyberwatch sources are configured to use them, which is generally the case with DHCP.

Reverse DNS

It is conventional to associate to each IP a domain name to identify it, using PTR DNS records. They are queriable by issuing a reverse DNS lookup.

Reverse DNS discoveries will perform a reverse DNS lookup for each IP address in a range, and list all the IP addresses with an associated domain name as discovered assets.

To create an reverse DNS discovery:

  1. Go to Discoveries, and click Add then click Reverse DNS in the Reverse DNS category
  2. Fill field Target with the IP range you wish to scan, for example 10.10.1.0/24
  3. Click Confirm

The discovery data will be processes in the background and the results available from Discoveries as soon the the task is complete.

Back to top