08-25-2008 02:49 PM - edited 03-11-2019 06:35 AM
can any one explain me about Cleanup & stealth rule of ASA F/W.Kindly advice how to configure it..!
08-25-2008 04:29 PM
Stealth Rule ( putting management ACEs at the top of your ACL): This is not relevant to Cisco firewalls as the two ACLs are completely separate entities.
Cleanup Rule ( denying all traffic that is not explicitly permitted):This is implicit in every ACL on a Cisco product. There is always an
implicit deny at the end of every ACL.
Syed
08-26-2008 02:03 PM
Its not clear about staelth rule.
Kindly explain about hardening of firewall like how stop Dos attack.How to save my network from hacker because my firewall open port is 53 & 80 due to running webserver and dns forwarding .....
08-26-2008 02:21 PM
By definition Stealth rule defines the policy that restrict access to the Firewall itself and protect the firewall from traffic directed towards itself.
In cisco firewalls the direct traffic (telnet,ssh,icmp,Http..) is controlled seperately.
"Traffic through the firewall" is controlled by ACL and "traffic to the firewall" is controlled by separate set of commands.
For cisco's recommendation on FW hardening p
Check the examples on Cisco SAFE Blueprint
SAFE: A Security Blueprint for Enterprise Networks
SAFE: Extending the Security Blueprint to Small, Midsize, and Remote-User
Networks
Syed Iftekhar Ahmed
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: