Search This Blog

Friday, September 21, 2007

firewall-wizards Digest, Vol 17, Issue 17

Send firewall-wizards mailing list submissions to
firewall-wizards@listserv.icsalabs.com

To subscribe or unsubscribe via the World Wide Web, visit
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
or, via email, send a message with subject or body 'help' to
firewall-wizards-request@listserv.icsalabs.com

You can reach the person managing the list at
firewall-wizards-owner@listserv.icsalabs.com

When replying, please edit your Subject line so it is more specific
than "Re: Contents of firewall-wizards digest..."


Today's Topics:

1. Pix rulebase/policy analysis (jacob c)


----------------------------------------------------------------------

Message: 1
Date: Wed, 19 Sep 2007 07:11:39 -0700 (PDT)
From: jacob c <jctx09@yahoo.com>
Subject: [fw-wiz] Pix rulebase/policy analysis
To: firewall-wizards@listserv.icsalabs.com
Message-ID: <894300.5929.qm@web54009.mail.re2.yahoo.com>
Content-Type: text/plain; charset="iso-8859-1"

I'm a newbie to the PIX line but these questions would apply to other firewalls as well. I have some questions that I hope you guys can assist me with.

Two Questions:
1) What is the best/easiest way to document a current policy? Spreadsheet?? I
would like to know what ports (services) are open and to where? Also duplicates,
etc.? Would it be best just to put it in a spreadsheet? Is there a tool for
this?
2) Once an audit/analysis has been made, what is a good way to make the new
changes, if there are many? Would it best just to download the config and modify
it offline?
3) What is the method to see what rules are being hit the most so I can
rearrange the rules in the most logical, efficient order?
4) Is there standard Analysis checklist to go by when reviewing a PIX firewall
policy?
Any help is highly appreciated.
Thank you,


---------------------------------
Check out the hottest 2008 models today at Yahoo! Autos.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://listserv.icsalabs.com/pipermail/firewall-wizards/attachments/20070919/499ce530/attachment-0001.html


------------------------------

_______________________________________________
firewall-wizards mailing list
firewall-wizards@listserv.icsalabs.com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards


End of firewall-wizards Digest, Vol 17, Issue 17
************************************************

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)