What are the best practices when dealing with ACLs?
For example, if I have network 10.10.10.0/24 and in here the only outbound traffic these hosts need to reach is any destination at port 8584, then will only 1 ACL applied in the IN direction suffice?
What about a second ACL applied in the OUT direction? will this be needed? the servers on the 10.10.10.0 networks need to be protected and they only expect outside hosts initiating connections destined to port 4999 on a host 10.10.10.3
What is the best approach possible to a situation like this? security is the number one concern and we assume that hackers will be testing this heavily.