Ok, so you have installed Nessus scanner on a Microsoft Windows Virtual Machine, and you get this error when attempting to scan a host.
“The network interface ‘\Device\{xxxxxx-xxxxxx-xxxxxxx-xxxxx}’ does not support packet forgery. This prevents Nessus from determining whether some of the target hosts are alive and from performing a full port scan against them. You may partially work around this problem by editing your scan settings to disable ‘Ping’ (Uncheck General->Ping host) and by providing Nessus with credentials to the remote host to prevent a port scan from taking place, however it would be preferable to scan over a different network interface.”
If you experience this error it has most likely been caused by the Microsoft ISATAP Adapter. Open cmd prompt, do an ipconfig /all, and you will be able to identify the culprit. It will have the same xxxx interface ID as in the error message above.
To fix, do the following;
(In device manager, the ISATAP adapter may not always be visible. If not, we first need to display all devices in device manager).
- Click Start, click Run, type cmd.exe, and then press ENTER.
- Type set devmgr_show_nonpresent_devices=1, and then press ENTER.
- Type Start DEVMGMT.MSC, and then press ENTER.
- Click View, and then click Show Hidden Devices.
- Expand the Network Adapters tree.
- Right click on all ISATAP adapters, and select disable (Of course, you must not be reliant Ipv6 in order to disable these adapters)
- Close the Nessus browser.
- Go to services and restart the Tenable Nessus service.
- Restart you Nessus browser, and attempt a re-scan.
Gregs 