Solved

Best practises for security policies.

Posted on 2011-02-12
7
821 Views
Last Modified: 2012-06-27
Hi
i am looking for examples or samples for a security polices that can be applied on any firewall and IPS.
is there any helpful site or documents.


cheers.
0
Comment
Question by:besmile4ever
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
7 Comments
 
LVL 5

Assisted Solution

by:rysic
rysic earned 100 total points
ID: 34878477
0
 

Author Comment

by:besmile4ever
ID: 34881399
Hi
dear what about the IPS?
as I can see it is totaly about the firewall...

Cheers.
0
 
LVL 18

Accepted Solution

by:
liddler earned 300 total points
ID: 34895634
Here are a few:
:
1) Know exactly what you will allow through and what traffic your system(s) produce
2) understand if you can white- or black-list ISPs, countries, traffic types
3) Aim for as few rules as possible, have business owners for each rule
4) Review rules regularly
5) review all logs to tweak rules to remove chatter / false positives
6) Understand any rate limiting capabilities and understand how to adjust them in the event of future traffic growth or how to decrease them in the event of an attack
7) Keep device patched up-to-date
0
Save the day with this special offer from ATEN!

Save 30% on the CV211 using promo code EXPERTS30 now through April 30th. The ATEN CV211 connects a laptop directly to any server allowing you instant access to perform data maintenance and local operations, for quick troubleshooting, updating, service and repair.

 
LVL 19

Expert Comment

by:CoccoBill
ID: 34895822
Get the CIS Cisco Firewall benchmark from the Center for Internet Security: http://cisecurity.org/en-us/?route=downloads.benchmarks. the latest version is 2.2.0 and it is a free download. It includes best practices for firewall management and configuration, use it as the basis for creating the policy.
0
 
LVL 63

Assisted Solution

by:btan
btan earned 100 total points
ID: 34931685
Can check out the answer in this and I have included some tools in my reply in it as well
@ http://www.experts-exchange.com/Networking/Security/Q_26562192.html
0
 

Author Closing Comment

by:besmile4ever
ID: 34932459
thnks.
0

Featured Post

Use Case: Protecting a Hybrid Cloud Infrastructure

Microsoft Azure is rapidly becoming the norm in dynamic IT environments. This document describes the challenges that organizations face when protecting data in a hybrid cloud IT environment and presents a use case to demonstrate how Acronis Backup protects all data.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

There's a lot of hype surrounding blockchain technology. Here's how it works and some of the novel ways it' s now being used - including for data protection.
Many of the companies I’ve worked with have embraced cloud solutions due to their desire to “get out of the datacenter business.” The ability to achieve better security and availability, and the speed with which they are able to deploy, is far grea…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question