Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Firewalls
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Number of devices per engineer

from [Terry Vernon] Network Security [Permanent Link]
Subject: Re: Number of devices per engineer
Date: Fri, 25 Nov 2005 03:02:01 -0600
That's similar to saying Ted can carry 10 apples while bill can carry only 8. The number of firewalls ANY PERSON can maintain has to do with their personal method of managing their time and experience with the application. Each configuration and situation is different also.

Example: I write a script for general network protection for Linux workstations using the iptables/netfilter suite, it's a script that basically sets up the firewall rules and enables it at boot from a vanilla default linux install. I can write another script that will ssh into each of the workstations, ftp the script i wrote onto itself, execute it, then exit and move on. Kinda like a worm with good intentions.

In that example I can manage a whole /24 network of machines by writing a script and hitting Enter. Other people may have different means for getting it done, my method requires writing a script and then staring out the office window while it works away. As for industry figures you won't find any that will be helpful to you as they are probably biased towards the scalability of product X. One other large factor is Cluster Monitoring. If a person knows instantly the health of the network he/she can manage many more than the 150 you mentioned. Also, shorter steps to configuring the firewall plays a huge role. If you have to authenticate, point, click, type, click, reassure, exit on every system and every system is needing to change because of scaling then you have a weeks worth of work to be done that can almost be guaranteed to not happen correctly on the first shot (this can also lead to heavy drinking).

Sorry to not answer your question how you hoped but maybe you get why this question really doesn't have a static answer. Any industry figure is going to be biased by the industry itself.

-Terry

dominic.walton@colt.net wrote:

I am looking at a strategy review for the take on of a number of firewalls and 
am looking for industry recognised figures for the number of firewalls one 
engineer can manage. I was previously told 1 analyst can monitor 90 FW's while 
an administrator can manage 150. This seems to me to be a very arbirary figure 
as this is depending on the amount of change activity performed on each 
firewall/monitoring technology/type of platform etc. Does any one know of 
industry figures along with the criteria associated with each figure?

Thanks
Dom.




[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  CHECKPOINT VPN Client, Alexis Villagra - VILSOL LatinAmerica
Next by Date:  RE: ISS Proventia Integrated Security Appliance, Aruna
Previous by Thread:  Number of devices per engineer, dominic . walton
Next by Thread:  Re: Number of devices per engineer, Randall Paige
Indexes:  [Date] [Thread] [Top] [All Lists]