On 07/30/2016 06:35 PM, ToddAndMargo wrote:
> I am looking to do network discovery.  Basically, everything
> on the interface, regardless of what network it belongs to
> or if even has an ip assigned.  Like AutoScan Network, only
> not abandoned.
>
I have a dedicated install of NetworkSecurityToolkit (NST) on a box 
connected to two ports on one of our core switches.  One port is the 
admin port that NST serves its web GUI on; the second port is a 
capture-only port and connects to a SPAN port on the core switch (Cisco 
terminology, as it's a Cisco 7609).  I set up the SPAN to redirect 
traffic for the ports and/or VLANs I'm interested in looking at, and 
then capture all the traffic (I capture all traffic then filter it 
out).  Not as clean as some other solutions, but it does get everything.