Re: Firewall Policy

From: Jens Hoffmann <jh@xxxxxxx>
Date: Mon, 31 Mar 2008 20:39:01 +0200

(1) What will be size of the firewall policy for an enterprise
network.

Depends on the needs of the specific enterprise.
Can be between 1 or 2 rules to hundreds of rules and a couple of firewalls
with different rules each.

(2) What rules in general contain in the rule set i.e., accept. or
deny

A sensible decision would be to deny any communication which is not
explicitly allowed and wanted.

(3) What are rules which are at the top of the rule set and which one
are the end of the rule set,

You are implying a precedence in ordering the rules, which might not
be present in all firewalls.

(4) and why the rules at the bottom of the ruleset have the lowest
priority than the rules at the top of the ruleset.

Many firewalls only process the rules top to bottom until they
find a match and then stop processing.

Again, this might not be true for all firewalls.

I personally like: ISBN-13: 978-0201634662 as an introductional book.

Cheers,
Jens
.

References:
- Firewall Policy
  - From: mhyasseen

Prev by Date: Re: help ftp error 530
Previous by thread: Re: Firewall Policy
Index(es):
- Date
- Thread

Relevant Pages

RE: [fw-wiz] Firewalls v. Router ACLs
... people to take in consideration in network design and layout. ... here and the old firewalls list often emphasized an approach that avoided ... The logging alert features alone turn this layer into a IDS as ... > An appropriately sized router will not have any performance problems. ...
(Firewall-Wizards)
[fw-wiz] IDS/IPS and LOGS
... nasty behavior is happening on your network (where your network is ... easily turn your IPS into a big denial of service attack. ... My guess is that most of the Worlds firewalls and IDS/IPS only have half ... I noticed that there is a big emphasis on log parsing while there should ...
(Firewall-Wizards)
Re: Establish persistant outbound connection for covert application
... which firewalls are running etc.) and then communicate its ... the actual network layer. ... They do have 2 network interfaces in case I want to chain them between a PC ... They also have a wireless interface so I can hook into the machine if I am ...
(Security-Basics)
Re: Going meta (was RE: [fw-wiz] Ok, so now we have a firewall...)
... but today's firewalls let too much stuff back ... > why people feel they need to compromise. ... Last spring we completely re-engineered the network for a large school ... All these segments are set up on separate VLANs and communicate with each ...
(Firewall-Wizards)
Re: Linksys router as Firewall
... > There are many different levels of firewalls. ... acts as an interface between two networks (e.g., the Internet and an ... protecting the internal network from electronic attacks originating from ... filtering outgoing traffic for security and network usage rules ...
(comp.security.firewalls)