Network Security Tip of the Week [5]

Firewall Change Management Information Security Security Policy Management Tip of the Week

by Sam Erdheim Oct 10, 2013

This week’s network security tip has to do with turning on logs for firewall rules. With complex network security environments, there is a lot of connectivity that is allowed/blocked by firewalls. When network traffic issues occur, having logging on the firewall rules can facilitate troubleshooting. Enrico, a senior security consultant from Italy embellishes on this and suggests the following…

“Always enable logging on Permit/Deny rules. This helps you to:

Have evidence in case of an intrusion
Troubleshoot routing (i.e.: asymmetric routing)
Troubleshoot application communication matrix
Make the best use of automated tools for optimization and analysis based on historical traffic.”

Have a network security tip? Share it with us! Comment on our blog, DM us at @AlgoSec or email us at [email protected].

< Previous

5 Assumptions Security Admins Should Never Make

Next >

Rethinking Network Security: How to Better Defend and Optimize Against Advanced Threats

Subscribe to Blog

Receive notifications of new posts by email.

Categories

Network Security Tip of the Week [5]

5 Assumptions Security Admins Should Never Make

Rethinking Network Security: How to Better Defend and Optimize Against Advanced Threats

Subscribe to Blog

Our Bloggers

Professor Wool Educational Videos

Best Practices for Amazon Web Services (AWS) Security

Resources

Network Security Policy Management Lifecycle

Latest Tweets

Archives

Posts

Compliance Made Easy: How to improve your risk posture with automated audits

Removing insecure protocols In networks

Network segmentation best practices (how to implement)

CSPM importance for CISOs. What security issues can be prevented\defended with CSPM?

AlgoSec and Zero-Trust for Healthcare

Introduction to Cloud Risk Management for Enterprises