Auto Network Discovery and Ports open #5938

New Issue

Closed

opened 2025-12-29 19:34:31 +01:00 by adam · 3 comments

adam commented 2025-12-29 19:34:31 +01:00

Owner

Copy Link

Originally created by @quiknick on GitHub (Jan 13, 2022).

NetBox version

v3.1.5

Feature type

New functionality

Proposed functionality

Many other IPAM solutions have the ability to conduct Auto Network Discovery either manually or on a schedule out of the box. Please add Auto Network Discovery into the product. Yes, I looked to see if there was an issue opened for this and while there are some Network Discoveries, no one has formally requested and to the level I am requesting. Yes, I have scoured the internet looking plugins others have created. Only one plugin works that I found that uses nmap and pysnmp, but has a few quirks and does not always add devices to the interface if it can't recognize the device

It would be nice along with discovery using nmap, to also capture the ports each device/IP has open and ingest this data into IP Address, Device, and open ports.

Not Working Plugins:
https://github.com/networktocode/ntc-netbox-plugin-onboarding (Does not work on netbox 3.x)
https://pypi.org/project/np-autodiscovery/

Working with some issues:
https://github.com/marcosmamorim/netbox-device-autodiscovery

Must install nmap
sudo apt install nmap
sudo pip3 install pynetbox nmap toml lxml

Devices don't always get added. no ability to capture ports open

Use case

IPAM by itself requires manually maintaining devices and IP addresses used. Having Auto Network Discovery to find devices via IP and SNMP is very useful and can help maintain configuration management. As you may or may not know, while NetBox is the source of truth, network configurations change, and/or new devices get put on a network without proper configuration management. Then the device is on the network, but not in NetBox. There needs to be a way to identify IPs used, that are not in NetBox to either allow adding or removing.
I will be using this is to simply automate the process of importing device information, THEN I can use NetBox as a source of truth. I wouldn't use something like this every day to update documentation, but as apart of Netbox first-time setup when the environment already exists, and spot checks from time to time to vet configurations

Database changes

adding open ports functionality would require new model and fields.

External dependencies

No response

Originally created by @quiknick on GitHub (Jan 13, 2022). ### NetBox version v3.1.5 ### Feature type New functionality ### Proposed functionality Many other IPAM solutions have the ability to conduct Auto Network Discovery either manually or on a schedule out of the box. Please add Auto Network Discovery into the product. Yes, I looked to see if there was an issue opened for this and while there are some Network Discoveries, no one has formally requested and to the level I am requesting. Yes, I have scoured the internet looking plugins others have created. Only one plugin works that I found that uses nmap and pysnmp, but has a few quirks and does not always add devices to the interface if it can't recognize the device It would be nice along with discovery using nmap, to also capture the ports each device/IP has open and ingest this data into IP Address, Device, and open ports. Not Working Plugins: https://github.com/networktocode/ntc-netbox-plugin-onboarding (Does not work on netbox 3.x) https://pypi.org/project/np-autodiscovery/ Working with some issues: https://github.com/marcosmamorim/netbox-device-autodiscovery Must install nmap sudo apt install nmap sudo pip3 install pynetbox nmap toml lxml Devices don't always get added. no ability to capture ports open ### Use case IPAM by itself requires manually maintaining devices and IP addresses used. Having Auto Network Discovery to find devices via IP and SNMP is very useful and can help maintain configuration management. As you may or may not know, while NetBox is the source of truth, network configurations change, and/or new devices get put on a network without proper configuration management. Then the device is on the network, but not in NetBox. There needs to be a way to identify IPs used, that are not in NetBox to either allow adding or removing. I will be using this is to simply automate the process of importing device information, THEN I can use NetBox as a source of truth. I wouldn't use something like this every day to update documentation, but as apart of Netbox first-time setup when the environment already exists, and spot checks from time to time to vet configurations ### Database changes adding open ports functionality would require new model and fields. ### External dependencies _No response_

adam added the type: feature label 2025-12-29 19:34:31 +01:00

adam closed this issue 2025-12-29 19:34:31 +01:00

adam commented 2025-12-29 19:34:31 +01:00

Author

Owner

Copy Link

@jeremystretch commented on GitHub (Jan 13, 2022):

Auto-discovery has been explicitly declared as out of scope for NetBox since its inception as a network source of truth. Please see the wiki for more detail.

@jeremystretch commented on GitHub (Jan 13, 2022): Auto-discovery has been explicitly declared as out of scope for NetBox since its inception as a network source of truth. Please see [the wiki](https://github.com/netbox-community/netbox/wiki/Frequently-Asked-Questions#why-doesnt-netbox-scan-for-ips) for more detail.

adam commented 2025-12-29 19:34:31 +01:00

Author

Owner

Copy Link

@quiknick commented on GitHub (Jan 14, 2022):

I understand it is a network source of truth. And in theory I agree, but in the real world every organization I have been a part of, triage happens and configurations change. Configurations change on the fly outside of Configuration Management oversite and now you have a delta that the person or people maintaining netbox do not know about. Or you have change management windows and things change on the fly to get something done, or an additional server or device is deployed. This is very common and no matter how many policies an organization has, these things still happen.

I consider the discovery capability as a spot checking to vet what is already in the source of truth. I can guarantee I am not the lone wolf who has seen these things happen. At least consider the nmap function to see what ports are open. A very valueable set of information to know attack vectors possible on a system or set of systems and devices.

@quiknick commented on GitHub (Jan 14, 2022): I understand it is a network source of truth. And in theory I agree, but in the real world every organization I have been a part of, triage happens and configurations change. Configurations change on the fly outside of Configuration Management oversite and now you have a delta that the person or people maintaining netbox do not know about. Or you have change management windows and things change on the fly to get something done, or an additional server or device is deployed. This is very common and no matter how many policies an organization has, these things still happen. I consider the discovery capability as a spot checking to vet what is already in the source of truth. I can guarantee I am not the lone wolf who has seen these things happen. At least consider the nmap function to see what ports are open. A very valueable set of information to know attack vectors possible on a system or set of systems and devices.

adam commented 2025-12-29 19:34:32 +01:00

Author

Owner

Copy Link

@DanSheps commented on GitHub (Jan 16, 2022):

Reports are what you are looking for. You would use a report to determine if there is a delta and then action it.

A delta does not mean the change was intended, so NetBox actioning it is not desirable. Please open a discussion if you have further questions.

@DanSheps commented on GitHub (Jan 16, 2022): Reports are what you are looking for. You would use a report to determine if there is a delta and then action it. A delta does not mean the change was intended, so NetBox actioning it is not desirable. Please open a discussion if you have further questions.

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

update-changelog-comments-docs

feature-removal-issue-type

20911-dropdown

20239-plugin-menu-classes-mutable-state

21097-graphql-id-lookups

feature

fix_module_substitution

20923-dcim-templates

20044-elevation-stuck-lightmode

feature-ip-prefix-link

v4.5-beta1-release

20068-import-moduletype-attrs

20766-fix-german-translation-code-literals

20378-del-script

7604-filter-modifiers-v3

circuit-swap

12318-case-insensitive-uniqueness

20637-improve-device-q-filter

20660-script-load

19724-graphql

20614-update-ruff

14884-script

02496-max-page

19720-macaddress-interface-generic-relation

19408-circuit-terminations-export-templates

20203-openapi-check

fix-19669-api-image-download

7604-filter-modifiers

19275-fixes-interface-bulk-edit

fix-17794-get_field_value_return_list

11507-show-aggregate-and-rir-on-api

9583-add_column_specific_search_field_to_tables

v4.5.0

v4.4.10

v4.4.9

v4.5.0-beta1

v4.4.8

v4.4.7

v4.4.6

v4.4.5

v4.4.4

v4.4.3

v4.4.2

v4.4.1

v4.4.0

v4.3.7

v4.4.0-beta1

v4.3.6

v4.3.5

v4.3.4

v4.3.3

v4.3.2

v4.3.1

v4.3.0

v4.2.9

v4.3.0-beta2

v4.2.8

v4.3.0-beta1

v4.2.7

v4.2.6

v4.2.5

v4.2.4

v4.2.3

v4.2.2

v4.2.1

v4.2.0

v4.1.11

v4.1.10

v4.1.9

v4.1.8

v4.2-beta1

v4.1.7

v4.1.6

v4.1.5

v4.1.4

v4.1.3

v4.1.2

v4.1.1

v4.1.0

v4.0.11

v4.0.10

v4.0.9

v4.1-beta1

v4.0.8

v4.0.7

v4.0.6

v4.0.5

v4.0.3

v4.0.2

v4.0.1

v4.0.0

v3.7.8

v3.7.7

v4.0-beta2

v3.7.6

v3.7.5

v4.0-beta1

v3.7.4

v3.7.3

v3.7.2

v3.7.1

v3.7.0

v3.6.9

v3.6.8

v3.6.7

v3.7-beta1

v3.6.6

v3.6.5

v3.6.4

v3.6.3

v3.6.2

v3.6.1

v3.6.0

v3.5.9

v3.6-beta2

v3.5.8

v3.6-beta1

v3.5.7

v3.5.6

v3.5.5

v3.5.4

v3.5.3

v3.5.2

v3.5.1

v3.5.0

v3.4.10

v3.4.9

v3.5-beta2

v3.4.8

v3.5-beta1

v3.4.7

v3.4.6

v3.4.5

v3.4.4

v3.4.3

v3.4.2

v3.4.1

v3.4.0

v3.3.10

v3.3.9

v3.4-beta1

v3.3.8

v3.3.7

v3.3.6

v3.3.5

v3.3.4

v3.3.3

v3.3.2

v3.3.1

v3.3.0

v3.2.9

v3.2.8

v3.3-beta2

v3.2.7

v3.3-beta1

v3.2.6

v3.2.5

v3.2.4

v3.2.3

v3.2.2

v3.2.1

v3.2.0

v3.1.11

v3.1.10

v3.2-beta2

v3.1.9

v3.2-beta1

v3.1.8

v3.1.7

v3.1.6

v3.1.5

v3.1.4

v3.1.3

v3.1.2

v3.1.1

v3.1.0

v3.0.12

v3.0.11

v3.0.10

v3.1-beta1

v3.0.9

v3.0.8

v3.0.7

v3.0.6

v3.0.5

v3.0.4

v3.0.3

v3.0.2

v3.0.1

v3.0.0

v2.11.12

v3.0-beta2

v2.11.11

v2.11.10

v3.0-beta1

v2.11.9

v2.11.8

v2.11.7

v2.11.6

v2.11.5

v2.11.4

v2.11.3

v2.11.2

v2.11.1

v2.11.0

v2.10.10

v2.10.9

v2.11-beta1

v2.10.8

v2.10.7

v2.10.6

v2.10.5

v2.10.4

v2.10.3

v2.10.2

v2.10.1

v2.10.0

v2.9.11

v2.10-beta2

v2.9.10

v2.10-beta1

v2.9.9

v2.9.8

v2.9.7

v2.9.6

v2.9.5

v2.9.4

v2.9.3

v2.9.2

v2.9.1

v2.9.0

v2.9-beta2

v2.8.9

v2.9-beta1

v2.8.8

v2.8.7

v2.8.6

v2.8.5

v2.8.4

v2.8.3

v2.8.2

v2.8.1

v2.8.0

v2.7.12

v2.7.11

v2.7.10

v2.7.9

v2.7.8

v2.7.7

v2.7.6

v2.7.5

v2.7.4

v2.7.3

v2.7.2

v2.7.1

v2.7.0

v2.6.12

v2.6.11

v2.6.10

v2.6.9

v2.7-beta1

Solcon-2020-01-06

v2.6.8

v2.6.7

v2.6.6

v2.6.5

v2.6.4

v2.6.3

v2.6.2

v2.6.1

v2.6.0

v2.5.13

v2.5.12

v2.6-beta1

v2.5.11

v2.5.10

v2.5.9

v2.5.8

v2.5.7

v2.5.6

v2.5.5

v2.5.4

v2.5.3

v2.5.2

v2.5.1

v2.5.0

v2.4.9

v2.5-beta2

v2.4.8

v2.5-beta1

v2.4.7

v2.4.6

v2.4.5

v2.4.4

v2.4.3

v2.4.2

v2.4.1

v2.4.0

v2.3.7

v2.4-beta1

v2.3.6

v2.3.5

v2.3.4

v2.3.3

v2.3.2

v2.3.1

v2.3.0

v2.2.10

v2.3-beta2

v2.2.9

v2.3-beta1

v2.2.8

v2.2.7

v2.2.6

v2.2.5

v2.2.4

v2.2.3

v2.2.2

v2.2.1

v2.2.0

v2.1.6

v2.2-beta2

v2.1.5

v2.2-beta1

v2.1.4

v2.1.3

v2.1.2

v2.1.1

v2.1.0

v2.0.10

v2.1-beta1

v2.0.9

v2.0.8

v2.0.7

v2.0.6

v2.0.5

v2.0.4

v2.0.3

v2.0.2

v2.0.1

v2.0.0

v2.0-beta3

v1.9.6

v1.9.5

v2.0-beta2

v1.9.4-r1

v1.9.3

v2.0-beta1

v1.9.2

v1.9.1

v1.9.0-r1

v1.8.4

v1.8.3

v1.8.2

v1.8.1

v1.8.0

v1.7.3

v1.7.2-r1

v1.7.1

v1.7.0

v1.6.3

v1.6.2-r1

v1.6.1-r1

1.6.1

v1.6.0

v1.5.2

v1.5.1

v1.5.0

v1.4.2

v1.4.1

v1.4.0

v1.3.2

v1.3.1

v1.3.0

v1.2.2

v1.2.1

v1.2.0

v1.1.0

v1.0.7-r1

v1.0.7

v1.0.6

v1.0.5

v1.0.4

v1.0.3-r1

v1.0.3

1.0.0

Labels

Clear labels

beta

breaking change

complexity: high

complexity: low

complexity: medium

needs milestone

netbox

pending closure

plugin candidate

pull-request

Mirrored from GitHub Pull Request

severity: high

severity: low

severity: medium

status: accepted

status: backlog

status: blocked

status: duplicate

status: needs owner

status: needs triage

status: revisions needed

status: under review

topic: GraphQL

topic: Internationalization

topic: OpenAPI

topic: UI/UX

topic: cabling

topic: event rules

topic: htmx navigation

topic: industrialization

topic: migrations

topic: plugins

topic: scripts

topic: templating

topic: testing

type: bug

type: deprecation

type: documentation

type: feature

type: housekeeping

type: translation

No Label type: feature

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

adam

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: starred/netbox#5938