Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
803
Views
0
Helpful
1
Replies

Firepower - Policies implementation

icaum
Level 1
Level 1

‎02-13-2020 10:15 AM - edited ‎02-21-2020 09:55 AM

Hello,

 

I need a guide here. What is the best practice and the correct way to implement Firepower Policies/rues? We currently have the Firepower in production with no policies in place (all traffic passes through the Firewall without any inspection).

 

Thank you

 

Ivan

Labels:
0 Helpful
1 Reply 1

Marvin Rhoads
Hall of Fame
Hall of Fame

‎02-14-2020 02:45 AM

Best practices vary widely according to your existing environment and what, if any, other security controls and policies are in place in your organization. depending on your environment and location you may also have legal or regulatory requirements that should be implemented in your firewall policy.

It's safe to say though that you should at least be doing network discovery and have in place the basic balanced security IPS policy.

Anything allowed inbound from the Internet or less secure interfaces should not get full access to internal resources but to select resources placed in a DMZ.

Knowing more about your overall design and what you're trying to protect would help.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card