You are currently viewing Difference Between Cloud Discovery And IP Based Discovery?

Difference Between Cloud Discovery And IP Based Discovery?

Hello Spectaculars,

Welcome to this article on ServiceNow Spectaculars.

This article is dedicated to discussing two important types of discovery: cloud-based and IP-based discovery.

This question has been viewed about 2,000 times in the ServiceNow Community.

What is IP-based discovery?

  • IP-based discovery is the process of automatically identifying and inventorying assets and services in a network infrastructure based on their IP addresses.
  • IP-based discovery tools utilize network scanning procedures to identify all active IP addresses on a network.
  • It then performs a series of probes and tests on each IP address to gather information about the assets and services running on it.
  • IP-based discovery will identify the majority of assets and services, which include servers, workstations, network devices, printers, and applications.
  • The tools can also gather additional information about each asset, such as the hostname, operating system, open ports, and installed applications.
  • IP-based discovery is an essential part of network management and security because it allows organizations to gain visibility into their n/w infrastructure, find out potential security risks, and facilitate compliance with industry regulations.
  • By maintaining an accurate inventory of all network assets and services, organizations can also better manage their resources, plan for upgrades and changes, and troubleshoot issues more effectively.
    [Device A]  <------>  [Router]  <------>  [Device B]
     192.168.1.2           192.168.1.1          192.168.1.3
         |                                            |
         +---------->----------+---------------------+
                                |
                            [Server]
                            192.168.1.10

Features of IP-based discovery?

  1. Network scanning: IP-based discovery tools perform network scanning to identify all active IP addresses on the network.
  2. Probing and testing: ServiceNow discovery performs a series of probes or tests to gather information about the assets and services running after the IP address is identified.
  3. Asset inventory: IP-based discovery tools create an inventory of all network assets and services, including servers, workstations, network devices, printers, and applications.
  4. Detailed information: IP-based discovery tools gather detailed information about each asset, such as the hostname, operating system, open ports, and installed applications.
  5. Network topology mapping: IP-based discovery tools can map the network topology, showing how all the assets and services are connected on the network.
  6. Customizable scanning: Many IP-based discovery tools allow users to customize the scanning process to exclude certain IP ranges, subnets, or specific assets.
  7. Real-time monitoring: allowing users to track changes in the network environment as they occur.

What is cloud-based discovery?

  • Cloud discovery is the process of automatically identifying and inventorying the assets and services that are hosted on cloud infrastructure.
  • Cloud discovery tools use APIs and integration with cloud providers to scan and map cloud-based environments, and identify the assets and services such as virtual machines, storage, databases, and applications that are running on them.
  • Cloud discovery provides visibility and control over organizations’ cloud resources, enabling them to optimize resource usage, detect security risks, and ensure compliance with industry regulations.
  • Cloud discovery provides visibility and control over organization’s cloud resources, enabling them to optimize resource usage, detect security risks, and ensure compliance with industry regulations.
  • It also provides metadata, tags, and attributes that can help organizations to better understand their cloud resources’ uses & improvement areas.

Features of Cloud Discovery?

Here are some common features of cloud discovery tools:

  1. Cloud provider integration: Cloud discovery tools integrate with cloud providers’ APIs to automatically identify and inventory cloud-based assets and services.
  2. Asset inventory: Cloud discovery tools create an inventory of cloud assets and services, including virtual machines, storage, databases, and applications.
  3. Detailed information: Cloud discovery tools gather detailed information about each cloud asset, such as metadata, tags, and attributes associated with them.
  4. Cost optimization: Cloud discovery tools provide insights into cloud usage and spending, allowing users to identify cost optimization opportunities.
  5. Security and compliance: Cloud discovery tools help identify security risks and ensure compliance with industry regulations by providing insights into cloud asset configurations and access permissions.
  6. Customizable scanning: Many cloud discovery tools allow users to customize the scanning process to exclude or include specific cloud regions, accounts, or services.
  7. Real-time monitoring: It allows users to track changes in the cloud environment as they occur.

Difference Between Cloud Discovery And IP-based Discovery?

Cloud DiscoveryIP Based Discovery
Uses APIs and integration with cloud providers to automatically discover cloud-based assets and services.Scans and maps the network infrastructure based on IP addresses and network protocols.
Good for cloud-based environments like public, private, and hybrid clouds.Good for on-premise environments like data centers, servers, & network devices.
Can discover cloud assets that are not visible to IP-based discovery tools.Limited to discovering assets and services that have an IP address assigned to them.
Can provide additional context, such as metadata, tags, and attributes associated with cloud assets.Mostly providing only basic information like hostname, IP address, and network topology.
Can automatically update the inventory as cloud assets are created, modified, or deleted.Requires periodic scans to update the inventory as new assets are added or removed.
Requires integration with cloud providers and access to relevant APIs and credentials.Does not require any integration but may require administrative access to the network infrastructure.

Leave a Reply