Re: [fw-wiz] firewall rule lifecycle management
From: Martin (marty_at_supine.com)
Date: 09/01/05
- Previous message: Chuck Swiger: "Re: [fw-wiz] Windows VPN/RRAS traffic through watchguard"
- Next in thread: Victor Williams: "Re: [fw-wiz] firewall rule lifecycle management"
- Reply: Victor Williams: "Re: [fw-wiz] firewall rule lifecycle management"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: firewall-wizards@honor.icsalabs.com Date: Thu, 1 Sep 2005 10:14:29 +1000
$quoted_author = "Bruce Smith" ;
>
> From my PIX experience, clear rule counters every month. After a while, look
> for the rules that have zero counts and then remove them. Can be scripted
> and searched with grep.
that's a neat way of picking up dormant rules, but you'd still need to
review them manually to identify rules that should no longer be in place
even if traffic is still matching them.
cheers
marty
-- In the 60's, people took acid to make the world weird. Now the world is weird and people take Prozac to make it normal. _______________________________________________ firewall-wizards mailing list firewall-wizards@honor.icsalabs.com http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
- Previous message: Chuck Swiger: "Re: [fw-wiz] Windows VPN/RRAS traffic through watchguard"
- Next in thread: Victor Williams: "Re: [fw-wiz] firewall rule lifecycle management"
- Reply: Victor Williams: "Re: [fw-wiz] firewall rule lifecycle management"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
