A versatile combination of feature packed Cisco firewall and a firewall analyzer unearthing the full potential of the firewall is a best defense against network threats.
The efficiency of your firewall rules is a key factor that determines how effective your Cisco firewall appliance is. Firewall Analyzer helps with firewall rule review by providing visibility on all the existing rules. It allows you to see how effective your firewall rules are and also identifies rule anomalies such as shadow, redundancy, generalization, correlation, and grouping. Firewall Analyzer helps optimize your firewall by providing suggestions on rule position. By correlating the number of rule hits with rule complexity and anomalies, it can also suggest changes to improve the firewall's performance. Thus, Firewall Analyzer helps with adhering to firewall best practices.
Firewall Analyzer generates configuration change management reports that help you find who made what changes, when, and why. Not only that, it sends real-time alerts to your mobile phone when changes happen. This report ensures that security admins have tight control over the firewall change request process. Firewall Analyzer is a Cisco firewall monitoring tool, meaning all the configurations and subsequent changes made in the firewall device are captured and stored in the database. Reports can also be generated periodically (daily, weekly, monthly, ect.).
Firewall Analyzer acts as a firewall compliance tool and generates out-of-the-box compliance reports on the latest regulatory standards. This firewall compliance software generates compliance reports for the following security mandates:
Firewall Analyzer performs security audits and reports on the manual configuration errors in your Cisco firewall device. This Cisco firewall audit tool helps you identify the security issues in your device. Firewall Analyzer provides a firewall security audit checklist with an overall security rating. The impact each issue has on device security is rated by severity and the difficulty level in fixing the issue is assessed. Based on these results, the report recommends firewall security best practices.
Apart from exhaustive firewall reports on network security, Firewall Analyzer offers a comprehensive alarm management module. Alarms are generated for anomalous security and bandwidth events. Any alarm that is generated is recorded in the product UI. These alarms can be sent in real time via email and SMS. Alarms can also trigger scripts and mitigate security events the very moment an attack is detected.
Firewall Analyzer performs firewall log analysis and provides the following reports:
Firewall Analyzer also supports virtual firewalls and thus acts as an extensive Cisco firewall management software. The virtual firewalls are dealt like normal firewalls and all the reports, alarms and other features are offered.
Extensive indexing of Cisco firewall logs makes search for security events easy and helps strengthen Cisco firewall security.
|Company||Devices||WELF Certified||Other log format|
|Cisco||Cisco Pix Secure Firewall v 6.x, 7.x|
|Cisco ASA - Virtual Contexts supported|
|Cisco IOS 3005, 1900, 2911, 3925|
|Cisco FWSM - Virtual Contexts supported|
|Cisco VPN Concentrator|
|Cisco CSC-SSM Module v6.3.x or higher|
|Cisco SSL WebVPN or SVC VPN|
|Cisco IronPort Proxy|
|Cisco Botnet module|
For detailed steps on how to configure Firewall Anlayzer with your Cisco firewall appliance please refer to this link (here).