PDA

View Full Version : Rule Base analysis - UNUSED rules



mhernandez
2010-10-25, 11:18
Hi, one of our customer want to generate reports of the UNUSED rules of the security policy. In the templates thereīs a Rule Base Analysis (Predefined -^ Firewall Blade - Security -^ Rule Base Analysis) but the contet itīs for the Top Matched and we need the NOT USED.. is there a posibilty to generate the NOT USED rules?

Thanks in advance

cciesec2006
2010-10-25, 11:28
Hi, one of our customer want to generate reports of the UNUSED rules of the security policy. In the templates thereīs a Rule Base Analysis (Predefined -^ Firewall Blade - Security -^ Rule Base Analysis) but the contet itīs for the Top Matched and we need the NOT USED.. is there a posibilty to generate the NOT USED rules?

Thanks in advance

I am in the process of evaluating Tufin. From what I've heard, it is the best product at doing stuff like this.

mhernandez
2010-10-25, 11:46
Thanks for the info, iīll evaluate that software.

Regards

RayPesek
2010-10-25, 16:16
Just be really careful if you have any long-running connections. We run some mainframe connections through private lines connected to DMZ NICs and once the connection is established, there are zero logs generated. It has gone months without the connection having to be re-established, so it will look like there is no activity.

Ray