Additive profiles - Githubissues

UOS-RZ / deterrers

The automateD nETwork pERimeter thREat pRevention System (DETERRERS) is a tool for decentral network administration. It automates workflows at the network perimeter, e.g., automatic scanning for vulnerabilities and automatic configuration of perimter firewall policies.

BSD 3-Clause "New" or "Revised" License

2 stars 2 forks source link

Additive profiles #12

Open lkiesow opened 1 year ago

lkiesow commented 1 year ago

Instead of being able to only select one profile with a fixed set of rules, it would be great to being able to select and combine multiple profiles.

For example, instead of having

HTTP+HTTPS
SSH
SSH+HTTP+HTTPS

You would have:

HTTP
HTTPS
SSH And you could just combine them as however you need.

elanfer commented 1 year ago

We've heard that colleagues at another institution do this with a bunch of different services that can be combined. The implemented these with a bluecat tag for each service profile. However, this could make, depending on the number of needed services, the perimeter firewall policies more complex.