10 Useful Tips for Firewall Rule Creation & Management - LiveOnNetwork
 |
| 10 Useful Tips for Firewall Rule Creation & Management |
All Vendor Firewall demo device access
1. Ensure all rules and objects follow standard naming conventions. Otherwise, identifying the unwanted rules later on will be very difficult.
2. Prioritize the rules in proper logical order to ensure that the firewall processes them according to the security requirements of your firewall policy. Here is a set of general rule recommendations:
a) Global deny rules
b) Global allow rules
c) Rules for specific computers
d) Rules for specific users, URLs, and Multipurpose Internet Mail Extensions (MIME) types
e) Other rules based on your organizational network policy
3. Always group rules that belong together for easy management.
4. Don’t complicate firewall management by unnecessarily nesting rule objects.
5. Try to use the same rule set for similar firewall policies with the same group object.
6. Add expiry dates (as comments) for temporary rules and regularly review these dates for rule clean-up.
7. Avoid using the "Any" option in the firewall’s "Allow" rules. This may result in allowing every protocol through the firewall.
8. Never have the “Allow All” rule as your first rule.
9. It’s better to have a "Deny All" rule as your first firewall rule, and then add other exceptions to allow traffic as needed.
10. Run regular risk queries to identify vulnerable firewall rules.
