Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Firewalls
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Firewall Security Guidelines

from [McKee, Graydon] Network Security [Permanent Link]
Subject: RE: Firewall Security Guidelines
Date: Wed, 15 Dec 2004 20:23:55 -0500 
If I understand your request correctly, what you are really looking for are some
generic best practices to include in your "baseline."  My recommendations are
that you search the SANS Institute Reading Room as well as the usual security
haunts out on the web.  You might also take a browse through the NIST Special
Publications.  Once you have all of that digested you should have a good idea as
to how to begin to start laying out what your after.  

As has been suggested by others, a lot depends upon the environment.  Best rule
of thumb that you can always follow is to "deny all" unless you have a
documented and accepted business reason for opening anything up on the firewall.
If you already have one in place with an existing rule set, take that as a
starting point, map out what is going where and find out why.  Monitor the
traffic in question over these ports one at a time and see who is talking.
Close off what you can and get management to accept the residual risk for the
rest.  

Graydon McKee - GSEC
Senior Security Architect, Federal Information Security Practice
Unisys  US Federal Government Group
Office: 703-439-5991   Fax: 703-439-3216
Mobile: 240-472-7148 

I have recently changed my digital signature, please update your settings if you
have saved my previous one. Thank You. 

 

-----Original Message-----
From: Kenya Hunter [mailto:kenya.hunter@leumiusa.com] 
Sent: Tuesday, December 14, 2004 3:54 PM
To: firewalls@securityfocus.com
Subject: Firewall Security Guidelines

Good Afternoon,
I am trying to write a security minimum security baseline for firewalls
and wanted to know if anyone knew where I could find some already
published versions out on the web.  I am looking for all different
firewalls like: checkpoint, pix, cyberguard, and e.t.c.

Thanks.

Kenya 


********************************************************************************
***
The information contained in this e-mail message is privileged and confidential
and is intended only for the use of the recipients (individuals or entities)
referenced herein. If the reader of this message is not the intended recipient
or the employee or agent responsible for delivering it to the intended
recipient, you are hereby notified that any dissemination, distribution or
copying of this communication is strictly prohibited. If you have received this
communication in error, please immediately notify us by reply e-mail (at the
sender's address) or by telephone and delete this message file from all
networks, discs, backups and/or computers.

Attachment: smime.p7s
Description: S/MIME cryptographic signature

[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Large fortinet deployment, steve holden
Next by Date:  Re: Checkpoint SmartDefense and Malformed SSL Packets, Bobby Matznick
Previous by Thread:  RE: Firewall Security Guidelines, Eric Hunter
Next by Thread:  Get Topology in R55, Mauro Costantini
Indexes:  [Date] [Thread] [Top] [All Lists]