Re: Firewall Rule Audit Software/Service

["Simanovich, Roman" <rsimanovich () USJ EDU>]

An excel spreadsheet works great for this, here are the columns I have in mine.

Sequence #
ID
From
To
Source
Destination
Service
Action
NAT/AV/WebFilter/AppControl/IPS/SSLInsepction
Department
Description
Expiration



Thanks,
Roman

From: The EDUCAUSE Security Constituent Group Listserv <SECURITY () LISTSERV EDUCAUSE EDU> On Behalf Of Mandi Witkovsky
Sent: Monday, August 13, 2018 11:15 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Firewall Rule Audit Software/Service

I'd love to hear the answer to this one.  Even just learning how people tackle documenting and reviewing their rules 
would be beneficial.

Thanks,
mandi



From: The EDUCAUSE Security Constituent Group Listserv <SECURITY () LISTSERV EDUCAUSE EDU<mailto:SECURITY () LISTSERV 
EDUCAUSE EDU>> On Behalf Of Telfer, Will
Sent: Monday, August 13, 2018 11:11 AM
To: SECURITY () LISTSERV EDUCAUSE EDU<mailto:SECURITY () LISTSERV EDUCAUSE EDU>
Subject: [SECURITY] Firewall Rule Audit Software/Service

We are looking at updating our Firewall Rule Audit structure so that we check over all of our rules at least once a 
year to verify whether they still need to be in place. Since we have multiple groups & multiple firewalls, each with 
their own specific set of rules the goal is to have some central structure where the audit can be recorded. Are any of 
you using a software or service that provides the ability for multiple users to log in & check off firewall rules? 
Please feel free to contact me off list if that is better for you.

Thank You,
Will Telfer, M.S.
Information Security Analyst
Information Technology Services
[sig]
Twitter: @BearAware
Facebook: www.facebook.com/BearAware<http://www.facebook.com/BearAware>