In message <[EMAIL PROTECTED]>, "Fredy Santana" writes: [After the influx of unsubscribe messages, I really feel out of place posting about something that might be relevant.]
Fredy, >I'm analizing a firewall-1 rulebase of 79 rules. Maybe you're thinkin I'm >driving crazy wich is certainly true. Does anybody know some method to >analize the rules of a firewall-1 or in general a huge firewall rulebase? > >I'm trying to find, by example, which services are allowed from internet >to internal network or which machines are visible from internet... things >like that. You can either pay for someone else to do the audit for you, or you can do it yourself. With the second option, you will actually learn stuff and see things you haven't seen before. I have done this a couple of times in my previous life and the best way to tackle this problem _is_ actually low-tech. Grab yourself a couple of sheets of paper (A3 or bigger, if possible), and color pencils. Now, draw your firewall, the network layout and then draw your *gasp* 79 rules onto the same network layout. Liberally use different colors, try color coding according to the direction of the traffic, importance of the traffic ... Hope this helps, Saso _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
