Essentire Managed Vulnerability Service (MVS) Scans [HCI CA]

eSentire MVS – External Scan Scheduling & Configuration Review

Purpose

This guide outlines the required actions after receiving notification that your Managed Vulnerability Service (MVS) cloud container has been provisioned and your first external scan is scheduled.


1st Scheduled External Scan Details

(GCP WPress VM Website)

  • Scan Type: External Vulnerability Scan

  • Date: Saturday, February 14, 2026

  • Time: 06:00 EST


Step 1: Acknowledge the Scan Schedule

Action Required

  1. Review the scan date and time.

  2. Confirm the schedule with your internal team.

  3. Reply to the eSentire contact to acknowledge approval.

If the scheduled time does not work:

  • Notify eSentire.

  • Request rescheduling to the following week or a preferred date.

✅ Scans will proceed as scheduled unless changes are requested.


Step 2: Review Configuration (XLSX Worksheet)

Action Required

  1. Open the referenced configuration XLSX file.

  2. Confirm:

    • Target public IP addresses

    • Scan scope

    • Approved assets

  3. Ensure no incorrect or unauthorized assets are included.


Step 3: Verify Firewall and Network Settings

To prevent scan disruption, confirm the following:

1. Allow Tenable Cloud Scanner IP Ranges

Ensure these IP ranges are not blocked or deny-listed:

  • 3.98.92.0/25

  • 35.182.14.64/26

⚠ Important:

  • Do not create a firewall bypass rule.

  • Simply confirm traffic from these ranges is not automatically dropped.


2. ICMP (Ping) Handling

If your firewall blocks ICMP by default:

  • Allow ICMP (ping) from the Tenable scanner IP ranges.

  • This ensures accurate host discovery during scanning.


Step 4: Notify Third-Party Hosting Providers (If Applicable)

If any scanned public IPs are:

  • Hosted by third parties

  • Managed by external vendors

  • Protected by upstream security providers

You must:

  1. Notify them of the scheduled scanning activity.

  2. Confirm approval for vulnerability scanning.

  3. Ensure scanning traffic will not be blocked.

⚠ Failure to notify third parties may result in blocked scans or service alerts.


Step 5: After the First Scan

Once the scan completes:

What You Will Receive

  • Access to the MVS Cloud Portal

  • Login instructions

  • A guided walk-through session

Walk-Through Will Cover

  • Reviewing vulnerability findings

  • Prioritizing risks

  • Using dashboard and reporting features

  • Optimization recommendations


Quick Checklist Before Scan Day

✔ Schedule confirmed
✔ XLSX configuration reviewed
✔ Target IPs verified
✔ Scanner IP ranges not blocked
✔ ICMP allowed (if required)
✔ Third-party hosts notified


Support Contact

Andrew Chess
Cyber Resilience Analyst
eSentire Inc.
Mobile: 226-339-5961


Outcome

If all steps are completed:

  • The external scan will proceed successfully.

  • Accurate vulnerability results will be collected.

  • Post-scan review and portal onboarding will follow.