Sunday, October 10, 2021

What is the security impact of having any to any firewall rules ?

I am not an network engineer but i dabble..
I had a situation where a firewall rule had an any any allow rule on the bottom of a firewall which i understood is the majorest of all firewall configuration mistakes.
What exactly are the security implications of this ?
Does this mean the src gets to connect to the firewall and that's it ? You would need port forwarding for there to be any deeper connection towards the servers behind the firewall i think ?

How much of an issue is that then? The firewall would still be a border between the outside and the inside due to the lack of port forwarding ?

The only security issues is see here is that inside gets to do whatever it wants and the outside can connect towards the firewall itself but not beyond.

Apologies is this is a stupid question. I did not find any proper resource explaining it very easy



No comments:

Post a Comment