<html>
<head>
<meta content="text/html; charset=ISO-8859-1"
http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
<div class="moz-cite-prefix">On 10/08/12 15:39, Paul Gear wrote:<br>
</div>
<blockquote cite="mid:50249E7D.3020100@libertysys.com.au"
type="cite">
<meta http-equiv="Context-Type" content="text/html;
charset=ISO-8859-1">
Hi everyone,<br>
<br>
After my last question about configuration management best
practices, i hope i'm on more well-trodden ground asking this
one...<br>
<br>
What do you use for centralised firewall management in a "typical"
medium-large enterprise with numerous branch offices, a head
office, and separate data centre & DR premises?<br>
<br>
Here are a few extra questions around the topic to get the
discussion rolling:<br>
<ul>
<li>Do you manage firewall settings centrally for a network of
50+ firewalls (most of which are small branch office units)?</li>
<li>Do you use the same vendor's solution for both physical and
virtual firewalls?</li>
<li>Do you use any policy "console" or similar software package
to manage multiple firewalls?</li>
<li>Are data centre/head office environments different enough to
branch offices that you wouldn't use the same type of
firewall? (Scale concerns aside.)</li>
<li>Are there any vendors out there who have a different take on
centralised firewall management to what might be considered
"industry standard"?</li>
<li>If affordability is a concern, does it change your answers
to the above?<br>
</li>
</ul>
<p>Thanks in advance,<br>
Paul<br>
</p>
</blockquote>
<br>
Obviously my timing was poor in sending this on Friday afternoon
while everyone was at their long lunch.<br>
<br>
Surely someone has some war stories or success stories to share?<br>
<br>
Paul<br>
</body>
</html>