Configure Polling with the

Network Discovery

Plugin

Open the OT Polling settings for the

Network Discovery

plugin.

Select

Device

IoT Security

Network Discovery

. In the OT Polling section, click

Edit

(gear icon).

The OT Polling Settings dialog box appears with the Schedule Settings tab active. Select

Enable OT Polling

to configure polling.

Schedule how often the firewall runs a job to poll for devices.

In the

Schedule Settings

tab, you can define how frequently to poll for devices. Specify which days of the week the job should run, and whether you only want to poll within a particular date range. The polling schedule uses the firewall's time zone for the start and end dates and times.

Configure the

Global Settings

for OT Polling.

Click the

Global Settings

tab. Choose your configuration method and which protocols you want to poll. If you're using a different interface than the management interface, also configure any service routes you want to use.

Configuration Method
: Choose a configuration method. The configuration method affects what fields are configurable in the
Protocol Settings
tab, and it affects all protocols used for polling.
Basic
: The Default Port and the Default Timeout fields for the selected protocols are preconfigured. The default ports are fixed, but you can modify the timeout when using the basic configuration method. The IP scope for polling is the same for all protocols.
Advanced
: Specify the Default Port and Default Timeout fields. We suggest a port for each protocol, as well as the accepted range of values for ports and timeout values. You can configure different IP scopes for each protocol.
Protocol
: Choose the protocol you want to use for device polling. You must select at least one protocol.
Optional
Service Route
:
Add
any service routes you want to use. By default, the management interface is used.

Configure each protocol that you selected for polling.

Click the

Protocol Settings

tab and configure each protocol that you selected.

Default Port

: If you're using the advanced configuration method, enter the port that you want to use for each protocol. If you're using the basic configuration method, you can't change the default port.

Default Timeout

: Enter a default timeout for polling. If you're using the basic configuration method, the default time is preset to 4 seconds. You can enter a timeout value of 1-300 seconds.

Default IP Scope

:

Add

a default IP scope for polling. You can specify individual IP addresses, multiple IP addresses, or address groups. If you're using the advanced configuration method, you can specify different IP scopes for each protocol.

If you specify an IP range or a subnet, the firewall polls every IP address. This can be inefficient and create a lot of unwanted traffic.

Network Discovery

limits polling to 1,500 IP addresses to manage the amount of traffic introduced and limit the load on the firewall.

Optional

SNMP

: When polling with SNMP, choose either SNMP v2 or SNMP v3.

When polling with SNMP v2, enter an SNMP community string that matches the one on the devices to be polled.

When polling on SNMP v3, enter a username, and choose a security level (

NoAuthNoPriv

,

AuthNoPriv

, or

AuthPriv

). Depending on the security level you select, you may also need to configure authentication and privacy protocols and passwords.

Optional

WinRM

: When polling with WinRM, enter a WinRM username and password, and confirm the password.

Click

OK

to save the configured OT Polling settings and close the OT Polling Settings dialog box.

Click

Start Job

in the OT Polling section to start the polling job.

Even if you defined a polling schedule, you need to start the job after updating the configuration for changes to take effect.

Optional

Review the details of the previous polling jobs by clicking

View Details

for either the Last Run or the Past Run Results.