This week’s network security tip focuses on simplifying your firewall rulebase. It’s commonly discussed that complexity is a security killer. So going with that premise, before adding more policies, tools and layers into your security infrastructure, perhaps its worth taking a step back, examining what you have, what you think you need and then look for ways to simplify your overall security management. This exercise can help you improve your operations as well as security.
Luis from Portugal provides this tip:
“Use the same rule set for similar policies. E.g. Production and DR can be the same policy with the same group object. The main objective is to have a simpler but global policy.”
Thanks Luis for the tip! If any AlgoSec blog readers have a network security tip, don’t keep it to yourself – share it with us!
Receive notifications of new posts by email.