Home » Compliance Reports

Firewall Compliance Reports


The Compliance section in Firewall Analyzer includes a consolidated view of all the Firewall device compliance reports. This section can be accessed from the Compliance tab.

Firewall Analyzer offers an exhaustive set of Firewall device compliance reports:

  • Policy Overview reports
  • Configuration change management
  • reports
  • Industry standard regulatory compliance audit reports
  • Firewall policy optimization reports

Pre-requisites for firewall compliance reports

The compliance reports are Firewall device specific, so select a particular device. If the device is not configured or associated to a device information profile to generate these reports, it can be configured from here on the fly.

The Compliance reports

The selected report (Policy Overview, Change Management, Compliance, Policy Optimization) will be displayed in the graphical and/or tabular format.

Policy Overview report

The statistics of the usnused rules/ACEs, unused objects, and unused interfaces is displayed and the details of the complete used rules is displayed in a table. This report can be exported to PDF format and CSV format is not supported.

This report is supported for Cisco, Fortigate, and Juniper SRX devices. This report can be exported to PDF format and CSV format is not supported. Unused Rules report is supported for Palo Alto and NetScreen devices.

Change Management report

In the Change Management report, the date wise number of changes are displayed in Bar chart graph and the time of change, user who changed, total number of changes and the type of change details are listed in the first table and the Startup - Running Conflict Report is displayed with the time of change, user who changed, and the total number of changes details in the next table. This report can be exported to PDF and CSV formats.

This report is supported for Cisco, Fortigate, NetScreen, Palo Alto and Juniper SRX devices. This report can be exported to PDF format and CSV format is not supported.

Compliance report

In the Compliance reports, the following regulatory compliance reports are displayed in Pie chart graph of % complied and the details are listed in the table

  • PCI-DSS
  • ISO 27001 (2013)
  • NERC-CIP
  • NIST
  • SANS

This report is supported for Cisco, Fortigate, and Juniper SRX devices. This report can be exported to PDF format and CSV format is not supported.

Schedule - Periodic Firewall Compliance Report Generation

The reports can be scheduled to get generated at periodic intervals and the report link in the UI shows the time, the compliance report was generated.

Scheduled List

The list of schedules to get generated at periodic intervals are displayed.

Policy Optimization report

In the Policy Optimization reports, you get a variety of policy anomaly reports, which will aid you to optimize the performance of firewall policies.

The reports are, Correlation, Generalization, Shadow, Redundancy, and Grouping. These will be displayed in the graphical and tabular format.

This report is supported for Cisco, Fortigate, and Juniper SRX devices. This report can be exported to PDF format and CSV format is not supported.

Pre-requisites for Compliance Reports

If you came across the 'The System can not execute the specific program' error while trying to generate Compliance report, carry out the following procedure. Download the 'Microsoft Visual C++ 2008 Redistributable' package.

You can download the package from Microsoft website at the URL given below: http://www.microsoft.com/download/en/details.aspx?displayLang=en&id=5582

Install the package and generate the Compliance report again. This will solve the issue.

 

 

Copyright © 2014, ZOHO Corp. All Rights Reserved.
ManageEngine