Modular Framework Policy - Practical Uses

Unanswered Question
Sep 21st, 2008
User Badges:

Hello All,


I was wondering if anyone has made practical uses of the ASA's Modular Framework Policy, especially in creating customized inspection engines via creating inspection-policy maps and matching regex expressions in the inspection-policy. How does a firewall administrator know what inspection-policy map to create and implement to keep up with the latest security threats? What resources or forums can a firewall administrator go to to find security threats that can be thwarted by creating inspection-policy maps? I see this as a very powerful tool, but where does one begin?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
cleidh_mor Mon, 09/22/2008 - 00:07
User Badges:

Hi,


The first step, as always, is to identify what threats you are trying to protect against. Once you know what to block, you should create a semi-formal policy definition and use the CCO documentation to tranfer this to the ASA.


In terms of forums, this one is pretty good for specific queries; CCO and Google are your friends.


HTH

yuchenglai Mon, 09/22/2008 - 04:10
User Badges:

I will probably dig through CCO. Thanks for the suggestion

Actions

This Discussion