“Top Ten Reasons Why the Firewall Guy’s Hair is Always on Fire”

I hate the title of this, but I actually liked some of the points here.  I got this from my friends at Tufin.  Give me some feedback to let me know how much of this applies to your enterprise firewall management routine.

10. His firewall rulebase has become bloated and likely contains undetected errors–exposing his organization to risk.

9. Monday’s firewall changes didn’t work when the policy pushed on Saturday because another’s changes offset his.

8. Last month he accidentally cut off access to a mission critical application when making a change.

7. His manager wants to know if they are still in compliance with their security policy.

6. He doesn’t know if the 50 web servers in that group are still active? Or for that matter how many duplicate objects are out there.

5. A user is requesting a change for a new rule, but he can’t tell if that traffic is already allowed…  “I’ll just make the change and deal with it later!”.

4. He’s concerned what problems would show up in a Best Practices audit.

3. It’s after six o’clock and his manager wants to know where his Rule Usage reports are!

2. And now they want quarterly PCI Audit Reports too!

1. We’ve been lax for too long with all of these permissive rules (rules with “ANY”)?

First Entry

Thank you for visiting Strategic Networking: the blog of Strategic Networking Sales Specialist for Nexum, Inc., Michael “Frazier” Davidson.

With over ten years experience in the field, I can bring your enterprise an incomparable knowledge of security, integrity and reliability solutions. Areas of advanced expertise include:

• Application Traffic Management
• Data Loss Prevention
• Data Governance
• Network Services (DNS,DHCP,RADIUS)
• Secure Remote Access
• Perimeter Security
• Host Security
• Logging/Advanced Reporting
• Strong Authentication
• Proxy Management

Industry certifications include Cisco Certified Design Associate (CCDA), Cisco Certified Network Associate (CCNA), Juniper Networks Sales Specialist (JNSS) (Routing, Security, WX, and DX), Certified Infoblox Sales Associate (CISA), F5 Networks Sales Certification, RSA Sales Certification, Riverbed Sales Certification and Aruba Networks Sales Certification. (For additional credentials and background info, please click here.)

Whether you’re new to data management or an experienced IT administrator, I have the resources and knowledge to promptly deliver fully compliant, user-friendly solutions which will keep your enterprise running smoothly and effectively.

To reach me directly for more information or immediate assistance with your IT needs, please email davidson[at]nexuminc[dot]com or call (513)793-0476.