Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
363
Views
0
Helpful
1
Replies

Rule making for anything inbound

Richard Langly
Level 1
Level 1

‎12-27-2017 05:51 PM - edited ‎02-21-2020 07:02 AM

Forgive the question, I'm still learning quite a bit. I was trying to think up some rules for my 5506 to make my network more secure, but I already don't allow any access from the outside to inside, and don't even really have any rules yet. It's a small network and I just use it to practice security.

Do I understand correctly that it's not worth putting rules in place for known bad actor ip's or packets and such because they're already dropped by anything coming in from the outside? So adding new rules to drop stuff would just be doing what it already does. Drops anything coming inbound.

Labels:
0 Helpful
1 Reply 1

Marius Gunnerud
VIP
VIP

‎12-27-2017 11:36 PM

If you have known bad actors I would check these in the connection events log to make sure they are actually being dropped.  If they are not being dropped then go ahead and add deny rules for these.

 

--
Please remember to select a correct answer and rate helpful posts
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card