On 6/17/2014 4:31 PM, Tom Metro wrote:
> Given the complexity of firewall rules, they're highly error prone. A
> small typo could easily open up a hole.
I've not found this to be the case. My experience with implicit deny
firewall policies is that:
Every firewall rule except for the final deny al
Do you test your firewall?
Given the complexity of firewall rules, they're highly error prone. A
small typo could easily open up a hole.
I don't mean the simple and obvious port scan, but something more
sophisticated. Do you have a test suite for your firewall? If so, what
tools do you use?
Has