Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FW1] Specifically allowing access services vs. specifically denying them

To: [email protected], [email protected]
Subject: [FW1] Specifically allowing access services vs. specifically denying them
From: "Frank Tirado" <[email protected]>
Date: Thu, 02 Nov 2000 13:48:36 -0500
Sender: [email protected]

  Typically, our posture has been to allow services out through the
firewall unless specifically denied.  Soon, however, we will be
"asked" to specifically allow only those outgoing services which are
required.  

  We decided to get a head start on things and try it out ourselves. 
We kept finding needed services that we had no idea existed (for
example, http through unusual port numbers) and having to include them
in the rules.  My personal feeling is that this should be included
among the labors of Tartarus as a never ending task.

  Has anyone out there gone through this proccess, and if so, how
successful was it?

Regards,
  Frank


================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

Prev by Date: [FW1] Re: log message queue is full
Next by Date: RE: [FW1] mail
Previous by thread: RE: [FW1] Re: log message queue is full
Next by thread: [FW1] beefing DNS Server on NT
Index(es):
- Date
- Thread