Firewall scanning with Nessus
Posted on 2009-03-31
We have a Cisco ASA firewall that is configure to go. We want to do some scanning for possible vulnerability.
The firewall is currently set to allow TCP traffic to one specific port, say 1005, to one direction only (other way will be deny). All other traffics are deny using ACL.
What should I do to test for possible vulnerability? We have full version of Nessus and NMAP available.
A consultant suggested us to do both positive testing (making sure the firewall rule will allow the traffic you want) and negative testing (verifying that it will blocks traffic that is not defined).
He didn't mention the details.... Can someone help me out? thanks!