In this episode I continue talking about some basic firewall rules that many organizations don’t have in place.

Download: Episode 6: Fun Firewall Rules – part 2 (audio)

Show notes:

  • Limit outbound DNS requests to just the ISP servers (or whatever external servers you use).
  • Anytime a firewall rule is changed, perform a vulnerability scan and/or port scan to validate changes.  Sometimes the “any/any” rules can cause some serious damage.