cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
3192
Views
0
Helpful
3
Replies

Hardening of Firewall

khanindra
Level 1
Level 1

can any one explain me about Cleanup & stealth rule of ASA F/W.Kindly advice how to configure it..!

3 Replies 3

Stealth Rule ( putting management ACEs at the top of your ACL): This is not relevant to Cisco firewalls as the two ACLs are completely separate entities.

Cleanup Rule ( denying all traffic that is not explicitly permitted):This is implicit in every ACL on a Cisco product. There is always an

implicit deny at the end of every ACL.

Syed

khanindra
Level 1
Level 1

Its not clear about staelth rule.

Kindly explain about hardening of firewall like how stop Dos attack.How to save my network from hacker because my firewall open port is 53 & 80 due to running webserver and dns forwarding .....

By definition Stealth rule defines the policy that restrict access to the Firewall itself and protect the firewall from traffic directed towards itself.

In cisco firewalls the direct traffic (telnet,ssh,icmp,Http..) is controlled seperately.

"Traffic through the firewall" is controlled by ACL and "traffic to the firewall" is controlled by separate set of commands.

For cisco's recommendation on FW hardening p

Check the examples on Cisco SAFE Blueprint

http://www.cisco.com/safe

SAFE: A Security Blueprint for Enterprise Networks

SAFE: Extending the Security Blueprint to Small, Midsize, and Remote-User

Networks

Syed Iftekhar Ahmed

Review Cisco Networking for a $25 gift card