« Learning Simple NAT | Main | Macbook Pro USB to Serial GUC232A »

April 29, 2006

Guidelines on Firewalls and Firewall Policy

I just finished reading through the National Institute of Standards and Technology (NIST)'s Guidelines on Firewalls and Firewall Policy. It's actually very well written with casual-enough language to hold your attention. I thought I'd sum up some of the key points for blocking traffic in a good firewall design. The following traffic types should always be blocked:

Like I said, really good reading. The whole article can be found at this link:
http://csrc.nist.gov/publications/nistpubs/800-41/sp800-41.pdf

Posted by JC at April 29, 2006 2:00 PM

Comments

Jeremy

When are you coming up with CBT nuggets for iptt, I am looking forwar for it.

-Sikandar

Posted by: Sikandar at May 4, 2006 9:16 AM

One comment on this is that people should not block "Inbound traffic containing ICMP" indiscriminately. This is frequent cause of problems because PMTUD fails, often causing problems when traffic traverses a VPN. (note - there are hacks to work around it but it’s better to look at specifically what you are blocking than to just say ICMP)

Posted by: DaveC at May 7, 2006 9:57 AM

I want to be more clear about the terms outbound and inbound during bandwidth management. Who is the initiator and who is the reponder while managing bandwidth by session inititation.

Posted by: Puneet Verma at December 9, 2009 8:49 AM

This is my first time i visit here. I found so many interesting stuff in your blog especially its discussion. From the tons of comments on your articles, I guess I am not the only one having all the enjoyment here! keep up the good work.

Posted by: Tory Gaerlan at January 13, 2010 4:26 PM

Post a comment




Remember Me?

(you may use HTML tags for style)