Another suggestion would be to use time objects for those temp rules. When someone asks for temp access to something in particular, you assign that person a particular amount of time, add the proper time object to the rule and the rule stops working when that period goes by.
That way you don't have to worry about remembering to disable or delete the rule when is no longer needed. It is even easier if you define a section on your rulebase for those temp rules, so from time to time you check it out and decide which rules are no longer needed and clean them up or you can keep those disabled so you can take advantage of them when someone else needs one. Regards On Mon, Jun 8, 2009 at 3:58 AM, pkc_mls <[email protected]> wrote: > a bv a écrit : > >> Hi list, >> >> > Hi a, > >> There are many rules on our R65 and when someone needs we add >> temporary rules but mostly >> the user who needs the temp rule dont warn us when he/she no longer >> needs it , and also we cant follow . So how can these rules >> effectively be observed , how often used or not used since x time? Are >> there any tricks on Smartview Tracker? What is the best practise? >> >> > I recommend to use the comment section of the rule to add the date at which > the rule was added > and the name of the person who added the rule. > > You can use also the comment for the network objects. > > I also recommend to use personnal admin logins instead of generic ones, so > if you search in the audit log you know exactly who did the rule > modification. > > To know if some rules are not used, you can check your logs, but the best > is to ask the person who may use the service > if this is in use or not. Smartview tracker will only give you information > on the current log (you can also open older ones), but if you have quite a > huge traffic, it can be really painfull to find the info from the logs. > > hope this helps. > > regards >> > > > Scanned by Check Point Total Security Gateway. > > ================================================= > To set vacation, Out-Of-Office, or away messages, > send an email to [email protected] > in the BODY of the email add: > set fw-1-mailinglist nomail > ================================================= > To unsubscribe from this mailing list, > please see the instructions at > http://www.checkpoint.com/services/mailing.html > ================================================= > If you have any questions on how to change your > subscription options, email > [email protected] > ================================================= > -- Sergio Alvarez +(506)88301342 Scanned by Check Point Total Security Gateway. ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
