Firewall Rules

125 pts.
Tags:
Firewalls
McAfee
I am setting up a McAfee secure Internet Gateway Appliance 3200, what are some of the common firewall rules that I should implement? wkharrell@gmail.com

Answer Wiki

Thanks. We'll let you know when a new response is added.

Hello SAS70ExPERT,
the configuration depends on what your computer is supposed to do.
Anyway start from this principle: “less permissions mean less problems” so you should have your first rule set to “deny all” then add the “allow” permissions accordingly.
Example:
<ul>
Deny all
Allow Internet browsing inbound-outbound (port 80 and 443)
Allow DNS traffic (port 53)
Allow FTP downloading (port 21)
</ul>

…and so on.
So the first rule will deny everything except the rules that follow.

I hope this is clear enough, otherwise post the list of programs that you should use and I’ll suggest you a basic config.

Regards.

———————-
I don’t think the McAfee SIG 3200 is a true firewall appliance. It is more like a content filter and has to be configured with signatures and appropriate heuristic settings to block malicious traffic. You should also have a device like an F5, Smoothwall, Cisco ASA or other firewall protecting your network. It is called security in depth and layers are best protection.

Discuss This Question:  

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following