Jump to content

remote exploit

cestarik

By cestarik
in Total Network Inventory

Recommended Posts

Alex Newbie

Alex

Posted
Posted

Hi cestarik,

Based on the description, this looks like a firewall signature log, not a TNI error.

During SNMP discovery, TNI sends SNMP v1/v2c and/or SNMPv3 requests to devices. Firewalls may interpret these queries as unauthorized SNMP access and trigger signatures like HP.OpenView.Hidden.SNMP.Community.Unauthorized.Access.

Check the event details on the FortiGate. If the source IP matches the server where TNI is installed, this behavior is expected during scanning. If the firewall is blocking the traffic, SNMP discovery may be affected. In that case, add an exception or whitelist rule for the TNI server, or adjust the policy for internal SNMP scanning so these queries are allowed.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing
×
×
  • Create New...