How do others handle scanning DHCP networks and not blow through their IPs Purchased?
With other scanning tools, you can scan a subnet (eg. /24) and if 50 hosts are found, your license count is -50; however, with Qualys you need to do a MAP then scan (which is very manual). While this is ideal for one off scans, how are others automating this? For DHCP networks, a host could have 2-3 IPs in the same /24 in a given day/week. If we tell Qualys to scan the entire /24 we end up consuming 255 hosts in our subscription which isn't ideal when we have multiple DHCP networks.
I guess to sum up, is Qualys IP Purchased done by Host or IP? I know this is a stupid question but during the scoping call with Qualys they ask how many hosts do you have in your environment. Wondering if we are just using the tool wrong.