For security/objectivity reasons we have payed to security company the firewall configuration including VPN feature. We are using Cisco Pix 506E with PIX-OS 6.3 version.

We read about Cisco Internet Key Exchange Denial of Service Vulnerability for this pix between other vulnerability docs. For this reason we need to do pen test to check pix and we know security is not just a hardware firewall installation.

At first scope we want to do pen testing to the VPN configuration in both ways, inside and outside the firewall but we need to work asap the external way (scanning from outside the pix) because VPN is working since last week.

If anyone can point to any good tools (any type, open source or not) to do pen test from outside, that would be really helpful. We are using Windows (all versions) and Linux (Slackware) platforms where we could use recommended tools.

Thanks in advance.