Firewall Wizards mailing list archives
RE: sanity rule checker for fw-1
From: "Stiennon,Richard" <richard.stiennon () gartner com>
Date: Sun, 5 Aug 2001 09:14:09 -0400
What a great idea. It could prioritize each rule and highlight its potential vulnerability. Firewall misconfiguration is a big problem in organizations that have 50 plus rules. It would be great to have a daily report that pointed out things like two way rules where one way suffices, or a temporary telnet rule that was meant to be shut off after the remote admin was done. Don't know of any such tool :-( -Stiennon -----Original Message----- From: dirtbag [mailto:dirtbag () anywhereusa com] Sent: Thursday, August 02, 2001 3:56 PM To: firewall-wizards () nfr com Subject: [fw-wiz] sanity rule checker for fw-1 first thanks this list is great. I am looking for sanity checker for a checkpoint rule base. ie. flag a rule that is created as a two way rule where one way is only required for known services http,ldap etc..... thanks again _____________________________________________ Free email with personality! Over 200 domains! http://www.MyOwnEmail.com _______________________________________________ firewall-wizards mailing list firewall-wizards () nfr com http://list.nfr.com/mailman/listinfo/firewall-wizards _______________________________________________ firewall-wizards mailing list firewall-wizards () nfr com http://list.nfr.com/mailman/listinfo/firewall-wizards
Current thread:
- sanity rule checker for fw-1 dirtbag (Aug 04)
- Re: sanity rule checker for fw-1 Gregory Austin (Aug 06)
- <Possible follow-ups>
- RE: sanity rule checker for fw-1 Stiennon,Richard (Aug 05)
- RE: sanity rule checker for fw-1 Avishai Wool (Aug 07)