Definition Edit

Deny by default is a ruleset for a firewall or router that denies all incoming and outgoing traffic that is not expressly permitted, such as unnecessary services that could be used to spread malware.

Overview Edit

With such a ruleset in place, malware cannot spread using services deemed unnecessary to the organization.[1] To reduce the spread of worms, it is particularly important to consider placing strict limits on the types of traffic that external systems (e.g., telecommuters' home systems, business partners' systems) can send on the organization's networks.

References Edit

  1. The use of some services cannot be blocked easily through firewall rulesets. For example, some peer-to-peer file-sharing services and instant messaging services can use port numbers designated for other services, such as HTTP or Simple Mail Transfer Protocol (SMTP). Attempting to prevent the use of such services by blocking port numbers might cause legitimate services to be blocked. In such cases, it might be necessary to block access to particular IP addresses that host portions of the services, such as instant messaging servers. Also, application proxies can identify some instances in which one service is used when another is expected.

Ad blocker interference detected!

Wikia is a free-to-use site that makes money from advertising. We have a modified experience for viewers using ad blockers

Wikia is not accessible if you’ve made further modifications. Remove the custom ad blocker rule(s) and the page will load as expected.