![background image](http://html1.mh-extra.com/html/symantec/460r-gateway-security/460r-gateway-security_installation-manual_1418800025.webp)
Appendix
A
Developing a pre-installation
security plan
This chapter includes the following topics:
■
About developing a security plan
■
Defining your security policy
■
Educating users
■
Filling out worksheets
About developing a security plan
This appendix provides basic guidelines for developing an overall security plan. Developing a security plan
is the first step in your installation process and helps you to collect the information needed to install
Symantec Gateway Security 400 Series.
Developing a security plan consists of three basic steps:
■
Defining your security policy
■
Educating your users
■
Filling out worksheets
Defining your security policy
Before configuring your security gateway, you must understand exactly what network resources and
services you want to protect. It is crucial to have a carefully designed network security policy to guard the
valuable resources and information of your organization.
Ideally, you
should capture your security policy in a document that describes your organization’s network
security needs and concerns. Creating this document is the first step in building an effective overall
network security system and must be done prior to installation.
Your security plan details your security plan policy implementation. Based on the security concerns and
trade-offs of your overall policy, your security plan should contain a set of tasks. One of these tasks should
consist of establishing procedures and rules for access to resources located on your network. These
resources include:
■
Host computers and servers
■
Workstations
■
Connection devices (gateways, routers, bridges, and repeaters)
■
Terminal servers and remote access servers