Tracking changes to firewall configs?
Posted
by
jmreicha
on Server Fault
See other posts from Server Fault
or by jmreicha
Published on 2012-06-15T14:23:53Z
Indexed on
2012/06/15
15:18 UTC
Read the original article
Hit count: 408
Myself and one other indivdual will be taking over some of the daily firewall management duties soon and I'm looking for a way to track changes on our firewall configurations for auditing purposes and need some ideas on a good way to track changes the changes that are made.
I don't have a lot of specific criteria but here are some of the basic things I would like to be able to do:
- Access to previous revisions of firewall configs
- Access to changes made and by whom
- When specific changes were made
I'm wondering if some sort of revision control software would work here as a way to track the the changes? Or if some other approach would work better for managing the change control in this situation.
I'm open to any and all suggestions at this point.
EDIT:
We are using a Checkpoint pair, one passive one active configuration. I will update again with specific model numbers when I get a chance.
© Server Fault or respective owner