Firewall Analyzer

Firewall Log Analysis Software

Firewall Analyzer 7.2

	Virtual Firewalls supported
	Application Reports
	Live Bandwidth Alerts

more...

Solutions for : IT Managers | Network Administrator

Firewall Rules and URLs Monitoring

Firewall Analyzer - Securing Archive Log Storage

Encrypting, Hasing and Time-stamping of archive log storage

Firewall Logs Archiving

Logs received from firewalls and squid proxy servers are archived at specific intervals. You can load these log archives into the database at any time, and generate reports for specific activity. However, log archiving takes up disk space, but it is required for forensic analysis and compliance audit requirements.

Encrypting Archived Log files

Now, Firewall Analyzer encrypts the Firewall log archive files to ensure the log data is secured for future forensic analysis, compliance and internal audits.

Hashing

The hashing of the archive log data files further secures the event log data.

Time stamping

The time stamping technique ensures that the archive data files are tamper proof. If there is a modification of file, this technique will reveal that the file has been tampered.

The three point security keeps the archive log data safe.

Configurable Log Archiving Intervals

The default log archiving interval creates a log archive file of the all the received raw logs every 24 hours. And these log archive files are then compressed (zipped) after every 7 days, to conserve hard disk space. You can configure the archive file creation and compressed file creation any time depending on how often you need to archive event logs. You can even disable log archiving entirely if needed.

Reports on Archived Event Logs

At any time, you can load Firewall log archive file into the Firewall Analyzer database and generate reports from the archived log data.

Detailed Event Log Archiving

Every log archive file that is created, is stored along with the time of archive creation, size of the archive, and the host whose event logs have been archived. This makes it easy to load and generate reports from archived logs.

Instant Firewall Log Archiving

Firewall Analyzer includes options to instantly generate log archives for all logs collected so far. All logs collected will be archived, irrespective of the log archiving interval defined. In this way, you can create and load archived files into the database at any time.

Alert Administration

Firewall Rules and URLs Monitoring

Download Free Trial Firewall Analyzer Firewall Analyzer Live Demo Firewall Analyzer Pricing & Purchase

Next Steps

Choose the Right Edition

Personalized Demo Request

Download

Get Online Quote

Pricing & Purchase

Let Us Contact You

Product Info

Features

Forums

View All Forums

Partners

	ZOHO Corporation Pvt. Ltd. All rights reserved. WebNMS Home \| Trademarks \| Privacy Policy \| Site Map \| Contact Us \| Careers \| Tell Us

ManageEngine

US :	+1 888 720 9500	\|	Intl :	+1 925 924 9500
US Intl :	+1 800 443 6694	(alternative number)
Australia :	+1 800 631 268	\|	UK :	0800 028 6590

Store | Reseller

ManageEngine Home Network Management Server Management Application Management Desktop Management Help Desk / Service Desk Log Management & IT Compliance MSP Solutions Integrated IT Management (IT360) On-Demand

All Products

Enterprise Management & Security Products
Active Directory Management Active Directory Auditing Application Monitoring Asset Management Bandwidth Monitoring & Traffic Analysis Customer Support Software Desktop Management EventLog Analyzer Exchange Reporting Tool Firewall Analyzer Help Desk Software Integrated IT Management (IT360) IP Address Management (IPAM) Software	MSP Desktop Management MSP Help Desk Software MSP Network Management Platform Network Configuration Management Network Monitoring Software Network Security Scanner with Patch Management OS Deployment Password Management Self-Service Password Management Storage Management Software SQL Server Management VoIP Monitoring Website Monitoring (SaaS)
ManageEngine Free Tools

Network Information for the IT Manager

Traffic and Security of Enterprise Network - Snapshot View

As a CIO/CSO/IT Manager of an enterprise, you would like to apprise yourself of the traffic usage and security threatening activities of the enterprises network.

Firewall Analyzer addresses your requirements. It provides a snapshot view of the network traffic and security events of your network in the form of a dashboard. The dashboard displays the graphical overview and statistical snapshot of the total network traffic distributed among the protocols and security events distributed among various categories.

Network Traffic

For the network traffic, it addresses a critical question like who, when, and where, i.e., who (which host) is using your traffic, when (what time) the traffic was used, and where (which destination) the traffic was directed to. It provides trend of Internet traffic across the perimeter security devices.

Network Security

For the network security, you can view the latest security events received (formatted or raw SysLogs) from a particular device. You can get alerted for any of these security events and pinpoint the exact event by drilling down the reports or searching.

It provides valuable information about usage of Firewall rules. It segregates the unused rules of the Firewall and lets you to manage the rules to optimize the Firewall performance.

There are slew of pre-built reports available in Firewall Analyzer. Firewall Analyzer allows you to create the management reports, for you to peruse.

Network Information for the Security / Network Administrator

Traffic and Security Analysis of Enterprise Network

As a Security/Network Administrator of your enterprise, you would like to constantly monitor the traffic usage and security threatening activities of the enterprises network.

You get a graphical overview and statistical snapshot of the total network traffic distributed among the protocols and security events distributed among various categories, in the dashboard.

There are slew of pre-built reports available in Firewall Analyzer. You have the quick traffic reports. From the quick reports you can find out the traffic usage by

top hosts who initiated the traffic
top destinations who received the traffic
top protocols used for communication
top requests received by the URL
top conversations between host and destination
top Firewall rules used, top VPN users
top hosts from where the attacks originated

From the quick reports you can find out the security incidents by

top attacks
top viruses
top denied events
top security events
top failed log-ons

This gives a comprehensive yet concise view of traffic usage and security events.

You can always drill down to any level of details (unto raw log level) you want. It allows you to create the network reports to be submitted to the management on daily basis.

You can search from heap of raw logs for forensic analysis and network audit. You can load and search the archived logs. The search results can be used to generate reports.

You can gather valuable information about usage of Firewall rules. You can modify or remove the unused rules.

You can get alerts triggered for anomaly and threshold conditions. You can administer the alerts (a bare bone trouble ticketing utitlity).

	Edit Reseller