Depends on your method:
1 - Deny everything, explicitly permit services
2 - Permit Everything, explicitly deny services
I usually go for the deny everything, then permit
acceptable as per security policy. Not every
situation is identical, so not always possible to
follow this route.
Regards
-M
At 14:17 18/09/1999 +0200, Olivier Paul wrote:
>Hello
>
>I'm trying to know what percentage of DENY rules can be found in typical
>packet filter configurations. I know that this percentage may vary a lot
>between two sites but if some people could give me some rough ideas
>about their own configurations ...
>
>thanks in advance
>
>Olivier Paul
>Ph.D. student
>ENSTB France
>-
>[To unsubscribe, send mail to [EMAIL PROTECTED] with
>"unsubscribe firewalls" in the body of the message.]
>
>
>
--
Matthew Smithshaw | ML Associates
[EMAIL PROTECTED] or [EMAIL PROTECTED] | P O Box 16076
tel:+44-141-951-2229 | Glasgow Scotland
fax:+44-141-951-8877 | G11 7TL
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
