Just a general question. We have always used packet filtering for the firewall. At this time, the company wants to change to access rules only. Basically, if you are not logged into NDS, you cannot access the internet. Further to that, they want limitations as to what people can browse.

Is it easy enough to change, or do we still have to have the packet filters running? In other words, do we keep the same setup, but just add in the access rules?