Search This Blog

Thursday, April 22, 2010

firewall-wizards Digest, Vol 48, Issue 9

Send firewall-wizards mailing list submissions to
firewall-wizards@listserv.icsalabs.com

To subscribe or unsubscribe via the World Wide Web, visit
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
or, via email, send a message with subject or body 'help' to
firewall-wizards-request@listserv.icsalabs.com

You can reach the person managing the list at
firewall-wizards-owner@listserv.icsalabs.com

When replying, please edit your Subject line so it is more specific
than "Re: Contents of firewall-wizards digest..."


Today's Topics:

1. Re: DNS Names for external services (Paul Melson)
2. Re: Looking for firewall mgmt solution (Rajeev Gupta)
3. Firewall review tool for Junipers (Wilson)


----------------------------------------------------------------------

Message: 1
Date: Thu, 22 Apr 2010 06:43:57 -0400
From: Paul Melson <pmelson@gmail.com>
Subject: Re: [fw-wiz] DNS Names for external services
To: dave@corecom.com, Firewall Wizards Security Mailing List
<firewall-wizards@listserv.icsalabs.com>
Message-ID:
<x2r40ecb01f1004220343w9c4d0272k5beefeb48205467e@mail.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1

On Mon, Apr 19, 2010 at 11:43 AM, Dave Piscitello <dave@corecom.com> wrote:
> Also, consider the low esteem IP addresses have in email. Many antispam
> software aggressively downgrade email containing IP addresses. If you intend
> to notify folks of the availability of services via email, aren't you
> increasing the probability that someone's antispam measures will block
> delivery?

I couldn't rule it out. At the same time, if that communication is
across a single org, this isn't likely an issue.


> [I suppose you could ask your users and customers to scan your IP addresses
> to find services. If you even pause to consider this option...]

This I love! We'll have Help Desk install a copy of NMap on
everyone's laptop and send them directions on how to use it to find
the VPN concentrator each time it moves. Also, we'll neglect to tell
the incident handlers. It'll keep them on their toes. :-)

PaulM


------------------------------

Message: 2
Date: Thu, 22 Apr 2010 08:26:42 -0400
From: Rajeev Gupta <rgup14@gmail.com>
Subject: Re: [fw-wiz] Looking for firewall mgmt solution
To: Firewall Wizards Security Mailing List
<firewall-wizards@listserv.icsalabs.com>
Message-ID:
<p2n9e982fe41004220526jc7f30611z5affc681f74855@mail.gmail.com>
Content-Type: text/plain; charset="utf-8"

Have you looked at solfsoft firewall manager solution? I am not sure after
they got acquired by 'extraprotect/loglogic', what there status is but they
had their product which could potentially meet your requirement.

On Mon, Apr 19, 2010 at 7:13 AM, Morriss, Jason (NIH/CIT) [C] <
morrissj@mail.nih.gov> wrote:

> Hi there,
>
> I'm wondering if anyone can give me any suggestions. I'm looking for a
> solution for my organization that will allow us to manage multiple firewalls
> from multiple vendors using a single interface (preferably web based). I've
> looked at a couple of different products so far and all of them simply
> analyze a firewall's rulesets to help you optimize and cleanup a firewall.
> That's fine, but we want this software to actually do the configuration
> changes that users input as well, similar to what OPSWARE does for routers
> and switches (OPSWARE does not work with firewalls very well).
>
>
> Thanks,
> Jason
>
> _______________________________________________
> firewall-wizards mailing list
> firewall-wizards@listserv.icsalabs.com
> https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://listserv.icsalabs.com/pipermail/firewall-wizards/attachments/20100422/e37168b1/attachment-0001.html>

------------------------------

Message: 3
Date: Fri, 23 Apr 2010 01:00:01 +1000
From: Wilson <securitynewsgroup@gmail.com>
Subject: [fw-wiz] Firewall review tool for Junipers
To: Firewall Wizards Security Mailing List
<firewall-wizards@listserv.icsalabs.com>
Message-ID:
<j2x75dba73d1004220800jbce4dc89q1a58b1dcebdb7a96@mail.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1

Hi there,

Just wanted to get some advice from the forum. What tools do you use
to perform firewall policies review on Junipers firewall? One of the
driver is to comply with PCIDSS. Due to the number of firewalls I hope
there is some proven tools out there that can help with things like
gathering configs, identify diff in rulesets etc. I am prepared for
manual analysis but want to automate as much as possible, especially
this will be a recurring tasks. Anyway welcome any open source or
commercial suggestions. Thanks heaps for your help.

Cheers,

Wil


------------------------------

_______________________________________________
firewall-wizards mailing list
firewall-wizards@listserv.icsalabs.com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards


End of firewall-wizards Digest, Vol 48, Issue 9
***********************************************

No comments: