Firewall Wizards mailing list archives

Re: How to keep firewall rules clean and up-to-date

From: K K <kkadow () gmail com>
Date: Wed, 27 Apr 2011 20:16:59 -0400

Recently I've been using Tufin and AlgoSec to audit firewall policies.

Both tools automate much of the grunt work in discovering what rules
are no longer being used, as well as identifying rules that are
redundant for one reason or another.  I still end up manually going
through each IP address seen in a policy/object and validating whether
the server/service still exists.

Documenting each new policy entry, as they are created, is priceless.

Kevin
_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

How to keep firewall rules clean and up-to-date Ilias - (Apr 27)
- Re: How to keep firewall rules clean and up-to-date TAS (Apr 27)
- Re: How to keep firewall rules clean and up-to-date Tracy Reed (Apr 27)
  - Re: How to keep firewall rules clean and up-to-date K K (Apr 27)
- Re: How to keep firewall rules clean and up-to-date Magosányi Árpád (Apr 28)
- <Possible follow-ups>
- Re: How to keep firewall rules clean and up-to-date Lloyd, Mike (Apr 28)