allowing only specific ports outbound
i am looking for confirmation. we are migrating firewalls to NSAs. currently all ports except for a select few are blocked. since outbound is default to all ANY. is it simply adding a service group with allowed ports and change the ANY to the group?