A firewall policy and the issues around it should always be documented to provide a reference for administrators and people working on the firewall. If the policy is documented people can work to, and follow the policy. If no formal policy exists people will tend to do things in an ad hoc fashion.
Reading our newsletter every Monday will keep you up-to-date with security news.
Receive a daily digest of the latest security news.