View Only
last person joined: 3 days ago 

Ask questions and share experiences with Juniper Connected Security. Discuss Advanced Threat Protection, SecIntel, Secure Analytics, Secure Connect, Security Director, and all things related to Juniper security technologies.
  • 1.  Best practice for managing multiple firewalls?

    Posted 11-14-2007 12:13
    Hi all!
    I am wondering if there exists some kind of whitepaper or best practice description for managing let's say 30 firewalls spread all around the globe. We have a regional office in each of the three regions EMEA, Americas and APAC. Currently we have three stand-alone installations of NSM with each region managing "there" devices. This is kind of "not good" because it is more likely that objects and rules etc. will be different over time .
    Any suggestions?


  • 2.  RE: Best practice for managing multiple firewalls?
    Best Answer

    Posted 11-15-2007 07:14

    With the new appliance (central manager) you could control all the other NSM appliances.

    the nice thing is that you can create pre and post rules for each firewall, this means you can force begin and end rules on every firewall (not even the local nsm admin can disable or delete these.

    So look up the new features of the Central manager appliance and see if this could fix your problem.


  • 3.  RE: Best practice for managing multiple firewalls?

    Posted 01-29-2008 00:50
    Another possibility for this would be to use one NSM installation and configure domains for management of each of the regions devices. Super users can specify the rights of the domain users and can create objects policies and the like in the subdomains for the regional admins to use.

    Probably slightly easier than CM and might save you the cost.