Firewall Wizards mailing list archives
Re: Firewall policy generator, capture based - Any idea?
From: "Darden, Patrick S." <darden () armc org>
Date: Wed, 30 Jan 2008 09:50:28 -0500
I think your best bet would be to hire a qualified and experienced security and firewall expert. Make sure in your ad you specify which firewall you wish to use/have purchased/or that the expert will be in on the purchasing as well. Additionally, note that a secure firewall is a moment in time; to keep it secure, you will need constant input from an experienced firewall and security expert. --Patrick Darden -----Original Message----- From: firewall-wizards-bounces () listserv icsalabs com [mailto:firewall-wizards-bounces () listserv icsalabs com]On Behalf Of Ruggero D Sent: Tuesday, January 29, 2008 9:10 AM To: firewall-wizards () listserv icsalabs com Subject: [fw-wiz] Firewall policy generator, capture based - Any idea? Dear Firewall Wizards, I would like to find out if you know any tool that can help me with this: I want to capture my Data Center traffic, with a NAM or Sniffer. Taken the capture I would like to have a tool that can interpret the traffic flows and automatically generate firewall rules to allow those flows. I really don't want to waste time inspecting each single PCAP packet! For example if there are multiple flows from the same subnet, create a permit rule for that subnet matching the destination range. Basically a packetflow capture based firewall rules generator. Thanks Best Regards Ruggero Delcuratolo
_______________________________________________ firewall-wizards mailing list firewall-wizards () listserv icsalabs com https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- Firewall policy generator, capture based - Any idea? Ruggero D (Jan 30)
- Re: Firewall policy generator, capture based - Any idea? Paul Melson (Jan 30)
- Re: Firewall policy generator, capture based - Any idea? Darden, Patrick S. (Jan 30)
- Re: Firewall policy generator, capture based - Any idea? Dale W. Carder (Jan 30)
- <Possible follow-ups>
- Re: Firewall policy generator, capture based - Any idea? salgak (Jan 30)