An audit of the firewall rule set is an analysis of active and inactive firewall rules with the aim of identifying vulnerabilities and potential for improvement. The audit focuses, amongst others, on too broad, overlapping, insecure (e.g. using protocols such as telnet or FTP) and obsolete rules. In addition to this, firewall rule set processes (for example for the creation, modification and deletion of rules) may be reviewed.