Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Firewall rulebase audit

From: "Murda Mcloud" <murdamcloud () bigpond com>
Date: Thu, 20 Sep 2007 11:36:21 +1000
Hey this is a good start point-from Lance Spitzner no less...
http://www.rootprompt.org/article.php3?article=323

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On
Behalf Of jctx09 () yahoo com
Sent: Thursday, September 20, 2007 7:00 AM
To: security-basics () securityfocus com
Subject: Firewall rulebase audit

I have a pair of PIX firewalls that I need to audit. I was hoping to get
some guidelines for doing this. Antyhing specific to PIX would be even
better.


1) What is the best/easiest way to document a current policy? Spreadsheet??
I would like to know what ports (services) are open and to where? Also
duplicates, etc.? Would it be best just to put it in a spreadsheet? Is there
a tool for this?


2)Is there standard Analysis checklist to go by when reviewing a (PIX)
firewall policy?


Any help is highly appreciated.


Thank you,
Previous By Date Next
Previous By Thread Next

Current thread: