Abstract
The main focus of this project is to enable users to detect inconsistencies in firewall rules and to help resolve them. Consistency refers to the fact that any possible packet should not receive different fates in the same firewall or in the same network. Inconsistent configuration might leave a security hole or cause intermittently disrupted services. Detection of inconsistencies is the first step in resolving them, helping us to identify the type of inconsistency detected. Resolving the inconsistency involves actions such as deleting the inconsistent rule or moving the order in which they are executed. Not all inconsistent firewall rules are deleted as this can result in loopholes within the firewall and lead to security issues as well as denial of service. In this project, an algorithm to detect inconsistencies in firewall would be implemented to detect and display the different types of inconsistencies present in the firewall. Also, the heuristics rules developed for inconsistency induced learning in firewall rules help the users to make a decision on how to resolve the inconsistencies.