I am new to Rapid7 and InsightVM so I may just be misunderstanding something.
We just moved our InsightVM from on-prem to the Cloud. It appears we no longer have the ability to do on demand/remediation scanning through sites. I do not have local scan engines deployed on my network, as we thought we would be able to do all scanning using our Cloud instance. Am I incorrect?
I’ve gone back and forth with support who is telling me it’s a firewall issue but our firewall is open to our cloud instance. We have no problems with normal daily scanning.
Is your scan schedule pointing to the correct scan engine ? In the past I have fallen foul of this.
So long as you have a route from your cloud instance back to your on-prem environment which you appear to have you should be ok. The firewall is evidently already allowing the traffic.
I would deploy a scan engine or two though. Will take the load off the console.
I have never used this type of a model, however… I do not think you scan your internal Assets without having a LOCAL Scan Engine on Prem. You can then connect your Cloud instance to these.. thats my understanding…
There should be a local scan engine. When you had a local instance of the console, that included the console and scan engine. Once you migrated to cloud, you no longer have the ability to scan with the new console/engine. Spin up a local engine, connect it into the console (Making sure connectivity is allowed) and you should be good to proceed.