[AusNOG] Centralised firewall policy management - recommendations?
Paul Gear
ausnog at libertysys.com.au
Mon Aug 13 21:07:49 EST 2012
On 10/08/12 15:39, Paul Gear wrote:
> Hi everyone,
>
> After my last question about configuration management best practices,
> i hope i'm on more well-trodden ground asking this one...
>
> What do you use for centralised firewall management in a "typical"
> medium-large enterprise with numerous branch offices, a head office,
> and separate data centre & DR premises?
>
> Here are a few extra questions around the topic to get the discussion
> rolling:
>
> * Do you manage firewall settings centrally for a network of 50+
> firewalls (most of which are small branch office units)?
> * Do you use the same vendor's solution for both physical and
> virtual firewalls?
> * Do you use any policy "console" or similar software package to
> manage multiple firewalls?
> * Are data centre/head office environments different enough to
> branch offices that you wouldn't use the same type of firewall?
> (Scale concerns aside.)
> * Are there any vendors out there who have a different take on
> centralised firewall management to what might be considered
> "industry standard"?
> * If affordability is a concern, does it change your answers to the
> above?
>
> Thanks in advance,
> Paul
>
Obviously my timing was poor in sending this on Friday afternoon while
everyone was at their long lunch.
Surely someone has some war stories or success stories to share?
Paul
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ausnog.net/pipermail/ausnog/attachments/20120813/01c892ee/attachment.html>
More information about the AusNOG
mailing list