Firewall tester to test from External network (Internet)

Posted on 2014-04-25
Last Modified: 2014-05-01

I would love to test from Internet if i have any leaks in my customer's firewalls.

Can you recommend any free or not free tester? Is there any leagal issues to consider. I don't want to break in anywhere but I would love to test that the firewalls are good.

One of my costomers reported that he had a Anti Virus warning of "Nmap TCP scan" where remote address were public IP.
Question by:RimFire007
LVL 10

Accepted Solution

Rafael earned 350 total points
ID: 40023527
You an use Tripwire Secure Scan to get what you need done.
LVL 15

Assisted Solution

ZabagaR earned 100 total points
ID: 40024626
It's free and it's good!

FYI - When you scan an IP, use the config toolbox/icon to the right to pick the ports to scan otherwise by default it won't. For instance, you can pick all ports 1-65535, or just look for certain services like FTP on port 21 or RDP on 3389, etc.....
LVL 25

Assisted Solution

by:Fred Marshall
Fred Marshall earned 50 total points
ID: 40025236
You might use Nexpose, Retina, Metasploit. There are some free versions for modest needs.  You'd need to review their offerings.  That said, they work great and generate reports that will choke a horse!
Zoho SalesIQ

Hassle-free live chat software re-imagined for business growth. 2 users, always free.

LVL 15

Expert Comment

ID: 40025858
Retina is fantastic, I've used that one (but the paid, not free).
LVL 10

Assisted Solution

Rafael earned 350 total points
ID: 40026292
I've used Retina before as well as Nesus and Tenable.  However, he wants a scan from outside of his network in. So unless he loads something and goes external he wont be able to do it ib the maner he wants. Hence why I mentioned Tripwire's Secure Scan since its hosted outside his network.  He can monitor thw scan inside his network whule hw initaes the scan.
LVL 15

Assisted Solution

ZabagaR earned 100 total points
ID: 40027092
Just initiate a scan from your home PC if you want a scan from the outside inward. Or I just initiate the scan from a remote office and make sure traffic goes out the WAN.

Author Closing Comment

ID: 40035462

I really didn't want to use any scanners not recommend here. I'll start with Tripwire Secure Scan.

Featured Post

Control application downtime with dependency maps

Visualize the interdependencies between application components better with Applications Manager's automated application discovery and dependency mapping feature. Resolve performance issues faster by quickly isolating problematic components.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Using in-flight Wi-Fi when you travel? Business travelers beware! In-flight Wi-Fi networks could rip the door right off your digital privacy portal. That’s no joke either, as it might also provide a convenient entrance for bad threat actors.
Phishing is at the top of most security top 10 efforts you should be pursuing in 2016 and beyond. If you don't have phishing incorporated into your Security Awareness Program yet, now is the time. Phishers, and the scams they use, are only going to …
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Many functions in Excel can make decisions. The most simple of these is the IF function: it returns a value depending on whether a condition you describe is true or false. Once you get the hang of using the IF function, you will find it easier to us…

910 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

22 Experts available now in Live!

Get 1:1 Help Now