cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

278
Views
0
Helpful
1
Replies
Highlighted
Beginner

Firepower - Policies implementation

Hello,

 

I need a guide here. What is the best practice and the correct way to implement Firepower Policies/rues? We currently have the Firepower in production with no policies in place (all traffic passes through the Firewall without any inspection).

 

Thank you

 

Ivan

1 REPLY 1
Highlighted
Hall of Fame Guru

Re: Firepower - Policies implementation

Best practices vary widely according to your existing environment and what, if any, other security controls and policies are in place in your organization. depending on your environment and location you may also have legal or regulatory requirements that should be implemented in your firewall policy.

It's safe to say though that you should at least be doing network discovery and have in place the basic balanced security IPS policy.

Anything allowed inbound from the Internet or less secure interfaces should not get full access to internal resources but to select resources placed in a DMZ.

Knowing more about your overall design and what you're trying to protect would help.