How to test your firewall

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.

How to test your firewall

L3 Networker

We have a Palo Alto PA500 with several security rules. It seems okay, but the CEO asked that I'm sure the company is secure.

So the question is, how can I test we are safe from the outside world?

6 REPLIES 6

Not applicable

If he wants a thorough test of your network security, he may want to hire a pen tester. Other than that, you could utilize the various functions on the monitor tab. Your question encompasses a rather broad tasking, so you would likely want a plan of action laying out exactly what needed tested prior to the testing. 

L5 Sessionator

Hi Zebit,

Other than penetration test, you can try to access the resources hosted inside and try to access them with ports or services that are not allowed. You can also test same this with outbound traffic. Other test can also include eicar test. You can access ACC tab and also threat and traffic logs to see what all services are denied or allowed and see if that is according to the policy. HTH.

L7 Applicator

If you don't have a budget for external pen testing, you can setup the scanner tools and run a basic exam yourself.  Nmap and metasploit are the basic tools of the pen tester.

Nmap - Free Security Scanner For Network Exploration & Security Audits.

Penetration Testing Software | Metasploit

Steve Puluka BSEET - IP Architect - DQE Communications (Metro Ethernet/ISP)
ACE PanOS 6; ACE PanOS 7; ASE 3.0; PSE 7.0 Foundations & Associate in Platform; Cyber Security; Data Center

L4 Transporter

Hi Zebit,

There are so many option you can check the security parameter of yours network that is called pen testing, for pen testing so many free tool and os are available in cyber space (backtrack, Kali linux , anonymous ). in you concept scan own public ip , find open port , Try DDoc attack , target attack ....... etc

L2 Linker

You can use the Nessus to scan the resource that is protected by the firewall as well.

  • 4103 Views
  • 6 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!