Re: [FW-1] How many rules should a firewall have?

Thu, 06 May 2004 13:19:45 -0700 

This seems to be an opinion question.

Mine would be
    you need a rule to hide the firewall.
    you need a rule to communicate with the firewall.
    you need a rule to log everything else.

other than that I do not see it as a need for the firewall.
for a firewall to allow traffic is not the need of the firewall but the need
of the network so I believe it is Three.

----- Original Message -----
From: "Albert Higgins" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, May 06, 2004 10:13 AM
Subject: [FW-1] How many rules should a firewall have?


> Hi,
>
> Our auditors want to know how many rules a firewall should have.
>
> I told them that 'it depends'.  But they want me to answer the following
> question:
>
> How many rules should both the perimeter and internal firewalls of a
global
> financial services organization have?
>
> I need to point them to a document or URL.   Anyone have a reference I
could
> use?
>
> Thanks!!!!
>
> _________________________________________________________________
> Mother's Day is May 9. Make it special with great ideas from the Mother's
> Day Guide! http://special.msn.com/network/04mothersday.armx
>
> =================================================
> To set vacation, Out-Of-Office, or away messages,
> send an email to [EMAIL PROTECTED]
> in the BODY of the email add:
> set fw-1-mailinglist nomail
> =================================================
> To unsubscribe from this mailing list,
> please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> =================================================
> If you have any questions on how to change your
> subscription options, email
> [EMAIL PROTECTED]
> =================================================
>

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================

Reply via email to