security policies for firewall and IDS

aejaz.armi · ‎12-26-2006

i have pix 525 firewall and 4215 IDS, i am new to this field & i want implement the security policies for our network inorder to protect the network.so send me the details about which port i have to block and which i have to permit and other important information related to the security policies(u may thinking as per the requirement we can implement the security policies but at present we don't have any requirement issue,so i want all the necessary security policies).

In advance

Thanking you

spremkumar · ‎12-26-2006

Hi Aejaz

By default in Pix firewall you have the ports blocked based on the requirement you have and the kinda services you host there in your premises you can open the ports on the firewall.

regds

akhan2004 · ‎12-28-2006

Dear brother, by default all the outgoing traffic is permitted and all incoming traffic is denied. by default, Outside Security is 0 and Inside interface security is High. DMZ you can adjust as per your business requirement. Usually HTTP and SMTP traffic you should be permitted and rest of the traffic you can allow as per your business requirement. and You have IDS as well, you can monitor the traffic by IDS, if you think any abnormal activity is going on then you can do the action on firewall to block such vulnerable ports. After few months you will have atleast some setup and kinda firewall policy.

For further details, www.cisco.com/go/pix

www.cisco.com/go/ids

http://cisco.com/en/US/products/hw/vpndevc/ps2030/prod_installation_guides_list.html