The typical enterprise firewall rule set stands as a confusing rat’s nest of contradictions and insecure configurations. Auditors are getting wise to the problems posed by unmanaged firewall rules. The growth in volume of firewalls within the enterprise often puts organizations at even more risk of failing a security audit. Most organizations are doubling down on their firewall strategies with the advent of the next-generation firewall. “Firewalls aren’t going away. The concept of the firewall is still there and that’s not changing anytime soon,” says Sam Erdheim.”]
Source: https://www.darkreading.com/analytics/poorly-managed-firewall-rule-sets-will-flag-an-audit