|
Posted by Todd H. on April 1, 2008, 12:37 am
If you were Registered and logged in, you could reply and use other advanced thread options
mhyasseen@gmail.com writes:
> Hi
> I am an undergraduate student. I have a project related to the
> firewall policy. Although I have got some material, I required some
> more reference regarding the following topics. Any help would be
> appreciated.
> (1) What will be size of the firewall policy for an enterprise
> network.
The hard part of the answer will be answering this in a way that
doesn't suggest too strongly that your teacher is an idiot for asking
such an inane question.
It varies quite a bit. Not all firewalls deal with rules the same
way. Enterprises vary greatly in their fw complexity dependent upon
whether they're hosting their own internet services how many locations
they have, whether they're dealing with partner extranets, and sch.
> (2) What rules in general contain in the rule set i.e., accept. or
> deny
Fall through of deny any any is a best practice as a default. Aside
from that if there's a web server accepting traffic to tcp/80 and
tcp/443 on it is pretty common. Other than that, it varies by the
companies vpn solution if any, if they're exchaning data with
partners, if they have an ftp server, etc etc
> (3) What are rules which are at the top of the rule set and which one
> are the end of the rule set,
>
> (4) and why the rules at the bottom of the ruleset have the lowest
> priority than the rules at the top of the ruleset.
See 1.
--
Todd H.
http://www.toddh.net/
| 
XML site map