Skip to main contentSkip to main navigationSkip to footer content

Local Firewall Policy

Policy Purpose

This policy defines using local firewalls on UAFS owned computing devices. This is considered a security standard.

Policy Statement

It shall be the policy of the University of Arkansas-Fort Smith for all University owned computers and servers to have local firewalls installed and running effectively.

Applicability

This policy applies to all University owned computer equipment, an d to the IT department employees.

Definitions

Local Firewall - An application that is used to allow or block communication to and from the OS from authorized applications and users.
OS - Operating System

Policy Procedure

Workstations
1. All UAFS workstations must be running a local firewall. The UAFS default is the firewall that comes installed with the OS, whether it is Windows or Mac.
Servers
1. All UAFS Windows servers must be running a local firewall such as “Windows
Firewall”.
2. All UAFS Linux based servers must be running a local firewall such as “IP tables”.

Enforcement

1 st violation - If local firewalls are turned off permanently and left running in production without management approval, the issue will be discussed by the employee’s IT supervisor.
2 nd violation - If local firewalls are consistently turned off permanently and left running in production without management approval, the issue will be discussed by the employee’s supervisor along with the IT Director.
3rd violation - HR will be notified, and the user may be subject to disciplinary action. If the user knowingly and/or willfully violated this policy, the disciplinary action may lead to termination.

Policy Management

This policy is managed by the IT department. The IT Director and appointed IT personnel are the primary administrators of this policy. The responsible executive is the VCFA.

Exclusions

1. Smart devices that do not come with a firewall installed with the OS, or do not have viable firewalls on the open market, are exempted from this policy.
2. In cases where a firewall is causing issues and keeping a server from functioning, it may be turned off at the discretion of the Director of Information Technology Services, after consultation with IT management. All efforts must be made to get the server application working with the firewall, including consultation with associated tech support. The turning off of a local firewall is considered a temporary fix only.

Effective and Approved Date

This internal policy was approved by Terry Meadows - Director of IT/CIO on 3/10/2023

Last Updated

10/31/2025 – Reformatted for accessibility by Terry Meadows Director of IT/CIO