Security Basics mailing list archives
Re: Evaluating firewall rules/policy
From: TAS <p0wnsauc3 () gmail com>
Date: Mon, 13 Sep 2010 21:25:07 +0530
You should try Firesec. It probably does what you are looking for. As of now it does not support checkpoint but pix, pix Asa and juniper are pretty much supported http://www.niiconsulting.com/products/Firesec.html A sample report http://www.niiconsulting.com/products/firesec/report.html Hope this helps. One more thing this is a commercial software Cheers! TAS On Sep 12, 2010, at 18:17, Curt Shaffer <cshaffer () gmail com> wrote:
Sorry for the lat reply. Commercial: http://www.athenasecurity.net/athenafirepac.html Nessus has some of this capability for the best practices anyway. You could always write a custom script for it as well. http://nessus.org/nessus/ Here is another that is in the works. I think it's only for Cisco though: http://code.google.com/p/access-list-analyzer/ On Nov 13, 2009, at 10:16 AM, dzembond () gmail com wrote:Hi all, does anyone have experience or possible suggestions for software and/or hardware solutions that could help me analyze existing firewall rules for possible issues and make suggestions according to Best Practices. We have mix of PIX/ASA's, Checkpoints as well as Junipers. It would be really beneficial if solution would make use of existing rule hit counts to determine which rules are not optimal or not needed. Regards ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
Current thread:
- Evaluating firewall rules/policy dzembond (Sep 10)
- Re: Evaluating firewall rules/policy Curt Shaffer (Sep 13)
- Re: Evaluating firewall rules/policy TAS (Sep 13)
- Re: Evaluating firewall rules/policy Todd Haverkos (Sep 13)
- Re: Evaluating firewall rules/policy Sébastien Serrurier (Sep 14)
- Re: Evaluating firewall rules/policy Carl Davis, CISSP, CE|H, MCSE, CCSA (Sep 27)
- Re: Evaluating firewall rules/policy TAS (Sep 27)
- Re: Evaluating firewall rules/policy Francois Yang (Sep 28)
- Re: Evaluating firewall rules/policy Curt Shaffer (Sep 13)