Re: [fw-wiz] firewall rule lifecycle management

From: Joe Matusiewicz (joem_at_nist.gov)
Date: 08/30/05

  • Next message: Dale W. Carder: "Re: [fw-wiz] Layer 2 firewalls ..."
    To: Michael Cox <michael@wanderingbark.net>, firewall-wizards@honor.icsalabs.com
    Date: Tue, 30 Aug 2005 15:08:33 -0400
    
    

    At 11:25 AM 8/30/2005, Michael Cox wrote:
    >Hi all.
    >
    >Question: What do those of you in large environments do to manage your
    >rulesets in terms of removing access that is no longer required? We get
    >lots of requests to add access, but are almost never told when
    >something can be removed. This is a large corporation with lots of
    >subcontractors, B2B, etc., and we're looking for ideas on how others
    >get a handle on this (or does anybody?).

    Once a year we get the diverse groups in a room and review the rules. It's
    a long meeting and you will always hear the words "that box doesn't exist
    anymore".

    -- Joe

    _______________________________________________
    firewall-wizards mailing list
    firewall-wizards@honor.icsalabs.com
    http://honor.icsalabs.com/mailman/listinfo/firewall-wizards


  • Next message: Dale W. Carder: "Re: [fw-wiz] Layer 2 firewalls ..."