We have checkpoint firewall 1. The system crashed and we lost all our scripts. No one knowes how create a good internal script for access to the internet so we are quite open at the moment. Therefor i have had to disconect the company from the internet.
I want to create a script that will only:
Allow web surfing to the users.
Allow the flow of smtp mail inbound and outbound.
Allow name resolution and other ESSENTIAL internet
Block file downloads to only the IT department.
Starting from a system with all ports blocked, what should I enable to achive this.
Also, any advise on making it a very secure system, but very quick to implement as I need to be up and running within 24 hours at no cost. (we are already using IP address translation and have a DMZ).
Thanks in advance