In the words of Jeb ... "It's a wall of fire where you will burn in eternal damnation..."
Here is the section from the draft Technical Specification for IT Infrastructure ... this is an area that Becta knows it needs to address so please discuss what your approach is and how this section could be changed.
I think that document firstly needs to define what a firewall is.
Is it only the gateway to the internet that they are classing as a firewall. Or does any router with ACLs count as a firewall?
Without the above the document is useless.
Our RBC's network is completely open. As long as you know the IP range for a school, you have access to their systems. So obviously we have to have a firewall, to keep out rogue users and/or viruses/worms.
The BECTA document should also address IDS and NAC systems. As these go hand in hand with network firewalls.