1. Run a packet sniffer for a few days or a week (depends on how busy your
network normally is).
2. Reduce the data to the services or packet types used from inside to out
and outside to in.
3. Match that with your security polocy.
4. Turn off everything on the router except what is required and permitted.
I even do/did this with my home office router/firewall. (And so the recent
silly leaktest mentioned on this list passed my setup as being secure.)
Fred
Avolio Consulting, Inc.
16228 Frederick Road, PO Box 609, Lisbon, MD 21765, US
+1 410-309-6910 (voice) +1 410-309-6911 (fax)
http://www.avolio.com/
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
