Scanner traffic
Have you observed traffic from Guardian360?
If you have noticed traffic from Guardian360 reaching your servers, this page explains what it is, why it is happening, and what you can do about it.
What is this traffic?
Guardian360 runs multiple scanners that continuously look in and around networks and web applications for weak spots and vulnerabilities. The scanners run 24 hours a day, 365 days a year. The traffic you are seeing is almost certainly an authorised scan, commissioned by the organisation that owns the systems being scanned, or by the IT partner that manages them on their behalf.
The scans are designed to be light and should have no impact on your server.
Our scanner IP addresses
You can recognise — and, if you wish, whitelist — our scanners by these source ranges:
149.146.0.176/28149.146.1.0/2746.22.191.1162001:4c10:1440:8::116
These addresses resolve to scanners.guardian360.net.
I would like to adjust or stop the scans
If the scanning causes any inconvenience, we are happy to help. You can ask us to adjust the frequency or speed of the scanners, or to exclude your systems from scanning altogether.
Email abuse@guardian360.nl and let us know which IP addresses or domains it concerns. Note that scans are usually requested by the owner of the systems; where needed we will check with them before making changes.
Other questions
For anything else, reach us at +31 (0)88 225 15 00 or info@guardian360.net.
Curious what we would find on your own environment?
Run a free Quickscan for a quick first picture of your external exposure.