What is this?

This knowledgebase contains questions and answers about PRTG Network Monitor and network monitoring in general. You are invited to get involved by asking and answering questions!

Learn more

PRTG Network Monitor

Intuitive to Use. Easy to manage.
300.000 administrators have chosen PRTG to monitor their network. Find out how you can reduce cost, increase QoS and ease planning, as well.

Free Download

Top Tags


View all Tags

NEW SENSOR REQUEST: Security sensor for devices that should not be on a subnet or behind a probe.

Votes:

0

Your Vote:

Up

Down

Want this feature implemented, too? Please upvote by clicking Thumbs up!

As a PRTG user, I want to have a "matching" sensor checking for devices that should not be on a subnet/ behind a probe. The match can be made with the devices that are in the active monitoring tree under a probe.

Details of user story

The whole view on security is rapidly changing, not only the outside layers must be protected but also from the inside there should be automated tests to check for strange behaviour. PRTG should be a core part of internal security checking because it's already in place and had this potential for sure.

Acceptance criteria

  1. Give a HIGH ALERT notification
  2. Give as much as possible details about that device (start collecting and logging).
  3. Give the option to add the detected strange device on a "safe-list for that probe" or add it to the active monitoring.
  4. The safe list must be easy accessible so users can review the list so now and then.
  5. A report template for incident or anomalie detection with a risk diagram (network info, types of protocols used by the device, to what devices the strange device has been talking etc etc)

Status

Open

add-feature add-sensor detection improve-prtg match probe prtg-kbtracker security

Created on Nov 2, 2021 8:24:13 AM by  Koen Terwijn (10) 1



Replies

Nobody has replied yet

Why not be the first?

Please log in or register to enter your reply.


Disclaimer: The information in the Paessler Knowledge Base comes without warranty of any kind. Use at your own risk. Before applying any instructions please exercise proper system administrator housekeeping. You must make sure that a proper backup of all your data is available.