Home > Security Channel Tips > Network Security > Auditing your customer's firewall activity
Security Channel Tips:
EMAIL THIS
 TIPS & NEWSLETTERS TOPICS 

NETWORK SECURITY

Auditing your customer's firewall activity


Mike Chapple
06.13.2007
Rating: --- (out of 5)


Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


Beyond selecting topologies and system placement, consultants charged with managing their customer's firewalls should keep a close eye on the audit logs, as they're a veritable goldmine of network security intelligence. This tip outlines four areas where basic log analysis can provide valuable firewall management data.

Auditing firewall activity

Once you've made it through the challenging phases of firewall selection and architecture design, you're finished setting up a DMZ, right? Your rulebase should remain stable and you'll never have a need to make configuration changes. We can only dream!

Here are some ways to leverage the logging capabilities of your customer's real world firewall to help keep things in order.

  1. Monitor rule activity
  2. Traffic flows
  3. Rule violations
  4. Denied probes

Get an expanded list of these four areas to concentrate on when auditing firewall activity on your customer's network.

Get more tips on building a firewall architecture.

Rate this Tip
To rate tips, you must be a member of SearchSecurityChannel.com.
Register now to start rating these tips. Log in if you are already a member.




Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


RELATED CONTENT
Network Security
Check Point NGX R65 operational changes
Top security tips for solutions providers
What 2008 holds for unified threat management
Making sense of network access control
How to use shared object rules in Snort
Snort frequently asked questions
How to secure the chain of custody in a digital forensics investigation
Checklist: Top five security assessment tools
Using Microsoft Baseline Security Analyzer to detect security holes
Firewall troubleshooting: How to modify the scope of Windows XP and Vista firewall rules

Network Devices
Check Point NGX R65 operational changes
New FireWall-1/VPN-1 features in Check Point NGX R65
Check Point NGX R65 FAQs
Summary of Check Point's NGX R65
Network firewall vendors
Check Point's NGX R65's Integrity Advanced Server
New SmartPortal features in Check Point NGX R65
Edge support for Check Point NGX R65's CLM
Customers' favorite security hardware and software
What 2008 holds for unified threat management

Network Access Control (NAC)
Channel Explained: Integrated endpoint security suites
Customers' favorite security hardware and software
Making sense of network access control
Introduction to the benefits of NAC
Implementing NAC products
How to sell endpoint security; and how to make a living at it
Symantec integrates antivirus, endpoint protection and data leak prevention
Firewall architecture decisions: perimeter protection strategy
Firewall topology: system placement
Security may be a selling point for desktop virtualization

RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary

DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.

HomeTopicsITKnowledge ExchangeTipsMultimediaWhite PapersBlogsEvents
About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
SEARCH 
TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Reprints  |  Site Map




All Rights Reserved, Copyright 2006 - 2008, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts