nessusd.rules

Hello all.

First I would like to say I appsoluly love this project. Nessus is a
wonderful tool.

I'm trying to be creative and deny close to 60 host from being scanned
during our audits. I want to utilize the nessusd.rules file keep track
rather then having to brake apart my subnets when inputting them for the
audit.

I'm trying to figure out why my scan is hanging with error "E2002 - These
hosts could not be tested because you are not allowed to do so." after
adding deny addresses to the nessusd.rules file. I want to scan the subnet
and have purposely denied IP address. Should I be using reject instead of
deny? Is their an error log I should be looking at.

My scan works flawlessly until it hits a deny host and then just stops.

Nessus 3.0.3 on FC5, NessusWX 1.4.5 on XP SP2

nessusd.rules looks looks like.

#
# Nessus rules
#

# Syntax : accept|reject address/netmask

# Accept to test anything :
deny xxx.xxx.xxx.101
deny xxx.xxx.xxx.102
deny xxx.xxx.xxx.103
deny xxx.xxx.xxx.104
deny xxx.xxx.xxx.105
deny xxx.xxx.xxx.106
deny xxx.xxx.xxx.107
deny xxx.xxx.xxx.108
deny xxx.xxx.xxx.109
deny xxx.xxx.xxx.110
deny xxx.xxx.xxx.111
deny xxx.xxx.xxx.112
deny xxx.xxx.xxx.113
deny xxx.xxx.xxx.114
deny xxx.xxx.xxx.115
deny xxx.xxx.xxx.116
deny xxx.xxx.xxx.117
deny xxx.xxx.xxx.118
deny xxx.xxx.xxx.119
deny xxx.xxx.xxx.120
default accept

Thanks,

Jeff
_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus