Solution: look at the access logs as often as possible. Alternatively get a specialised firewall forensic tool to do the job.
Are firewalls still important? Compliance is a pain
Firewall management is part of the compliance chain, for example for regimes such as PCI-DSS, HIPAA and SOX. This has become such a large-scale issue for enterprises that even element of the security infrastructure must now be able to generate automated and real-time policy compliance data at any moment in time and not simply because an audit is coming up. Firewalls need to be a 'clean' as possible, to relate firewall state to best practise, and to generate compliance reports that are easily understandable.
Solution: Compliance is conceptually simple: how far form a desired state is the firewall at the moment it is assessed? If a compliance system is doing its job the failures against that should be easy to see with clear remediation.
Source: Computerworld UK
Sign up for CIO Asia eNewsletters.