As a part of our safety coverage, we have now a extremely segmented, firewall and swap routed community with subsequent era Internet Utility Firewalls.
When establishing new servers, manufacturing machines, cloud companies or new (shopper/server) purposes, our firewall staff must be concerned. Whereas that is completely high-quality, it looks like a brand new endeavor each time, even when it is the third or tenth machine of the identical sort.
We have to specify supply/vacation spot IPs, ports, and protocols (and I am pleased with that), however haven’t got a really structured and repeatable strategy in doing so. And the firewall groups documentation of guidelines and adjustments “within the firewall” appears considerably intransparent. That course of is time consuming with repeated discussions on why we want this port or that protocol and we typically find yourself with points due to that.
Are you able to share or advocate a lean course of on requesting, documenting, and auditing firewall guidelines? Please additionally level me to different reddits if I’m a bit off subject right here.
