Review for dial-in access directly to the firewall server.
Firewall components are on an appropriate version and security patches are kept up to date as vulnerabilities and business reasons dictate.
A lockdown rule has been placed at the beginning of the rule base. The lockdown rule protects the firewall, ensuring that whatever other rules you put in later will not inadvertently compromise your firewall. If administrative access is required, then a rule should be placed before the lockdown rule. All other rules should go after the lockdown rule going from most restrictive to general rules. Review the remaining rules.10.
Fault tolerance (e.g., mirroring of data) has been implemented for the firewall server.Redundant components are installed where critical failure points exist, or spare parts should be on site.Use the hardware and software configuration information to identify hardware and software in place which provide redundancy and back up.
If single points of failure exist, plans exist to address the situation(s).Obtain and review a schedule of the retention periods for the firewall's software components and a schedule of the rotation cycle of the firewall's software.The disaster recovery plan includes the firewall server.