Manualshelf

Installation guide

ManualsBrandsCyberGuard ManualsComputer equipmentSG570
31323334353637383940
37
STEP 12: Firewall checklist – after installation
After installation and configuration of your firewall, but before you connect your private network to the
Internet via your firewall, please go through this checklist.
If there is even one question you cannot answer with yes, reconsider your options before connecting to the
Internet.
1 Is the firewall the only device with a network interface that can connect to the Internet?
Make sure there are no modems connected to computers within the private network.
Make sure there is no hub or switch bypassing the firewall.
2 Have you updated the firewall to the newest firmware/software version?
If not, consult your manual how to do this, and check on the Internet for availability of
such updates. Running old software with possibly known vulnerabilities is dangerous.
3 Have all ports on the firewall been closed, unless there is a demonstrated need for keeping
a specific port open, and has a risk assessment been performed?
If not, please read about firewall configuration in Step 9 first.
4 Has the firewall been tested?
If not, read first about firewall auditing in Step 10.
Then follow our step by step auditing guideline in Step 11 (if you cannot get a
professional to do it).
5 Has the firewall passed the tests without any warnings/failures?
If not, you must fix the detected problems first and retest your firewall until the test
report comes back clear.
6 If you could answer all questions so far with a ‘yes’, proceed. Otherwise, go back to question
1.
If you don't take this seriously, you will most likely suffer an intrusion and subsequently
be in breach of the Privacy Act.
7 Now you may connect your private network to the firewall.
Can you access all Internet services you intended to use?
can you browse the web?
can you send and receive email?
can you download pathology results etc?
If everything works, you must perform one final firewall audit on your live configuration
because computers active behind the firewall may show risks that weren’t obvious
before.