Tools for Penetration Testing VLANs and Firewall Rules

I recently upgraded my home router to a Ubiquiti Dream Machine SE and I’m working on setting up an isolated VLAN for some public facing web and game servers. So far I have some basic rules in place to disable inter-VLAN routing between the public VLAN and my private VLANs.

My public VLAN seems to be isolated enough, but I’d like to do some more in-depth penetration testing. Does anyone know of any tools or test suites that might help me verify that my public VLAN is truly isolated from my private VLANs? Maybe a test suite that would test configuration issues like VLAN hopping?

I use Nessus for pen testing. You can get a free activation code for up to 16 IP’s for free.

1 Like

Thanks, I’ll check it out

For simple network testing putting a device on that network and running NMAP scanning for your other networks would be the easiest way. There are no currently known vulnerabilities that allow VLAN hopping in UniFi.

1 Like

Cool, thanks for the suggestion Tom!

Most Pen Testers use Kali Linux, I’ve never used it myself but it must have everything needed.

1 Like