general purpose This category contains general-purpose operating systems like Linux and Windows. In the nmap-service-probes file this class is indicated by a lack of a d//d// (device type) version detection field field. bridge (15) A bridge combines two or more subnetworks into one. With a bridge this happens at a lower level than with a router. This category also includes things like Ethernet-to-serial bridges. broadband router (241) Devices in this category connect a network to the Internet via cable, ADSL, fiber optics, etc. Some of these devices provide network address translation, a firewall, port forwarding, or other services. firewall (128) A firewall controls what traffic is allowed into or out of a network. Some also have additional capabilities. This category doesn't include general-purpose operating systems that happen to come with a firewall, but it does include OS distributions purpose-built to work only as a firewall. game console (16) A video game console like the Xbox or PlayStation. hub (1) A hub joins network segments by re-broadcasting all traffic. Hubs are distinct from switches, which selectively transmit packets only to relevant destinations. load balancer (17) A device that distributes inbound traffic to multiple devices to ease the load on those devices. media device (150) This category includes all kinds of audiovisual equipment, including portable music players, home audio systems, TVs, and projectors. PBX (21) A private branch exchange, or PBX, routes telephone calls within a private organization and connects them to the public telephone network or VoIP. PDA (12) A handheld computer. Devices that are also telephones go in the "phone" category. phone (22) A network-capable telephone that is not a VoIP phone. Devices in this category are typically mobile phones. power-device (45) Miscellaneous power devices like uninterruptable power supplies and surge protectors. printer (371) Network-enabled printers, including printers with an embedded print server. print server (100) A print server connects a printer to a network. Printers that contain their own print server go in the "printer" category instead. proxy server (13) Any kind of proxy, including web proxies and other servers that cache data or understand high-level protocols. remote managment (51) Devices that allow servers or other equipment to be monitored or managed remotely. router (310) Routers connect multiple networks. They are distinct from hubs and switches because they route packets between different networks as opposed to extending one network. security-misc (43) Any security device that doesn't fall into the "firewall" category belongs in this category. This includes intrusion detection and prevention systems. specialized (108) The catch-all category. If a device doesn't fall into one of the other categories, it is specialized. Examples in this category are diverse and include such things as clocks, oscilloscopes, climate sensors, and more. storage-misc (101) Data storage devices like tape decks and network-attached storage appliances. switch (274) A device that extends a network by selectively re-broadcasting packets. Switches are distinct from hubs, which broadcast all packets. telecom-misc (24) Devices used by telephone systems that aren't PBXs, like voicemail and ISDN systems. terminal (9) A device with a keyboard and monitor with the primary purpose of communicating directly with a terminal server or mainframe. terminal server (24) A device providing terminal facilities to clients over a network. VoIP adapter (52) A device that converts between voice over IP (VoIP) protocols and normal telephone traffic. Also may convert different VoIP protocols. VoIP phone (81) A phone capable of a VoIP protocol. WAP (298) Wireless access points offer a wireless connection to a network. Most work with radio technology like 802.11b but some use infra-red or something else. Devices that could also be put in another category, like wireless broadband routers, are put in the WAP category because WAPs require special network considerations. webcam (100) Any kind of camera that stores or transmits pictures or video. This includes everything from consumer webcams to security system cameras. ---- Proposed changes Move X-ray machine (2) to specialized. Move cluster (3) to specialized. Move projector (3) to media device. I didn't find any projectors miscategorized as "specialized" -David. Move encryption accelerator (6) to proxy server. Move web server (2) to general purpose or specialized. Put Ethernet-serial bridges in the "bridge" category. Put the http-proxy matches in nmap-service-probes into the "proxy server" category if they are from a dedicated proxy device. Some of them are "security-misc" currently. Merge VoIP gateway into VoIP adapter.