Avaya Oceana® supports Security Vulnerability Scanning only during Maintenance Window.

Do not run Security Vulnerability Scans on live production Avaya Oceana® solutions.

Sometimes the Security Vulnerability Scans emulate or cause denial-of-service type events in the target solution. This disrupts the Avaya Breeze® platform clusters and blocks the network communication.

Vulnerability scanning can trigger Cluster HA switchovers and cause short Denying New Service outages as Avaya Oceana® attempts to recover automatically.

Running Security Vulnerability TCP SYN and ICMP Scans on live production solutions can generate too many network connections and sometimes trigger SYN flood or ICMP flood alerts.

Most Vulnerability Scanning softwares allow the user to configure the level of SYN Port Scanning, from Soft Detection to Aggressive Detection.

Refer to the Scanning software documentation and choose the least impactful option when scanning Avaya Oceana®.

You can run Security Vulnerability Scans during Maintenance Windows. However, you must reboot Avaya Oceana® to recover the Breeze nodes and rebalance Gigaspaces PUs across Avaya Oceana® clusters.