Hemo2 Posted May 12, 2010 Report Share Posted May 12, 2010 I have a few questions about the flow of information when doing scans. (More specifically the amount of data that is transfered.) When I do an immediate online scan, and it installs the remote service and does the remote scan, what all is getting transferred and copied back and forth? Here's my understanding of it as it occurs simply by observing the process. - I run TNI and do an immediate online scan and select multiple computers to scan. - TNI then contacts the remote computer and copies a file and remotely installs a service on the remote pc to initiate the scan. - The remote process scans and finishes and reports back the info to my computer that I'm running the scan on and then it removes itself from the remote pc. My questions are: - What file gets copied to the remote pc? Is it tniaudit.exe? - During the scan when I'm sitting at my computer running the immediate online scan, TNI will provide updates such as "copying file", "scanning (software)", etc. How often is TNI contacting the remote computer to get these updates and is this an amout of data of any size? - Once the remote scan finishes and sends back the data to my pc, how is this accomplished? Does the remote tniaudit.exe create the .XML file and then transfers that back to TNI, or is 'raw data' sent back to my pc and then TNI creates the actual .XML file? - Is the data (or .XML file) that gets sent back to my computer "compressed"? If so, about how large is it? I'm asking these questions because we're trying to get a feel for 'how much' data is being transferred across the network. We have many remote networks all across our state and bandwidth is an extreme problem and concern for us. The .XML files are about 1.3MB in size. The tniaudit.exe file is 256KB in size. So using simple math, I'm wondering if the amount of data transferred is around 1.56MB? But if there are multiple communications between TNI and the remote computer during the scan, that probably adds at least some to that total to scan a single computer. When my managers and network admins ask me how much data is being transferred to do a scan, I'm hoping to get a feel for what's going on so I can give them a fairly accurate answer, as we have thousands of computers on remote networks going across slower WAN connections and we don't want to interfere with daily operations and choke our WAN. Sorry, one more question. When doing a "login script" scan, the tniaudit.exe file gets copied down to the local pc and runs and then it copies the resulting .XML file to the location specified. I assume since the remote tniaudit.exe is the process performing the copy of the .XML back to the audit folder, that there is no compression of the .XML file, and the total data transferred back & forth would be around that 1.56MB, which encompasses the tniaudit.exe being copied and the .XML file being copied to the audit folder. Is that about the amount of data transferred when doing a login script scan? Thank you. Quote Link to comment
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.