In addition to traditional syslog-based reporting, Firewall Analyzer now extends support for ‘IPFIX with extensions’ NetFlow based reporting. Firewall Analyzer started supporting NetFlow format for Cisco security devices Cisco Adaptive Security Appliances (ASA) version 8.2 (2) and now have extended this to SonicWALL's SonicOS 5.8.x platforms, which support the ‘IPFIX with extensions' standard.
IPFIX data flow format offers many advantages for IT Managers:
'IPFIX with extensionss' supports both static and dynamic flows and provides unparalleled insight into application traffic analysis, bandwidth monitoring, threat detection, user activity tracking, and more.
Enable 'IPFIX with extensions' flow reporting in SonicWALL next generation firewalls (running on SonicOS v5.8.x platform) and configure the firewall to direct the flows to Firewall Analyzer. Both Static flows and Dynamic flows from SonicWALL are 'collected' by Firewall Analyzer, which then analyzes the received flows and generates a variety of network traffic and security reports.
The reports are:
Future versions will support VPN and Spam reports.