Firewall Analyzer - System Requirements


    The system requirements mentioned below are minimum requirements for a specific log rate. The sizing requirements will vary based on the load.

    Hardware requirements

    Standalone edition

    Firewall log rate
    Processor Memory Hard disk space
     Upto 500 logs/second Intel Xeon Quad Core 3.5 GHz 8 GB 90 GB/day for 500 logs/second
     More than 500 logs/second Intel Xeon Quad Core 3.5 GHz 16 GB 90 GB/day for every 500 logs/second

    Distributed edition

    Admin server

    Firewall log rate
    Processor Memory Hard disk space
     Upto 500 logs/second Intel Xeon Quad Core 3.5 GHz 8 GB 90 GB/day for 500 logs/second
     More than 500 logs/second Intel Xeon Quad Core 3.5 GHz 16 GB 90 GB/day for every 500 logs/second

    Collector server

    Firewall log rate
    Processor Memory Hard disk space
     Upto 500 logs/second Intel Xeon Quad Core 3.5 GHz 8 GB 90 GB/day for 500 logs/second
     More than 500 logs/second Intel Xeon Quad Core 3.5 GHz 16 GB 90 GB/day for every 500 logs/second

    Refer Firewall Analyzer Sizing Guide for hard disk space and PostgreSQL tuning.

    Note:
    • CPU recommendation for deployments use the PassMark® score. To learn more, click here.
    • We strongly recommend assigning a dedicated machine for Firewall Analyzer

     

    Software requirements

    The following table lists the recommended software requirements for an Firewall Analyzer installation.

    Software Up to 500 logs/second More than 500 logs/second
    Windows OS Servers:
    Windows 2019
    Windows 2016
    Windows 2012 R2
    Windows 2012
    Windows 2008 R2
    Windows 2008
    Windows 2003
    Windows 2000 Prof SP4

    Windows 10
    Windows 8
    Windows 7
    Windows Vista
    Windows 2012
    Windows 2008 R2 64 bit
    Linux OS RedHat 4.x and above
    Debian 3.0
    Open Suse
    Fedora
    Mandrake
    Ubuntu
    CentOS
    Red Hat RHEL
    Mandriva

    VMware

    CentOS 64 bit
    Any Linux distribution with
    glibc >= 2.3 and
    X libraries installed
    Browsers Chrome (preferred)/ Firefox/ Edge/ IE11

    Do not use Firewall Analyzer Distributed Edition in Internet Explorer.
    This will cause IE11 to work as IE7 which is not supported.
    Chrome (preferred)/ Firefox/ Edge/ IE11

     

    Note: User Privilege: Local administrator privileges required for Firewall Analyzer installation.

     

    Port requirements

    The following are the ports and protocols that Firewall Analyzer uses for communication.

    Ports used by the application

    Port Protocol Port Type Usage Remarks
    8060 TCP Static Web server port Can be configured using ChangeWebServerPort.bat file.
    22 TCP Static SSH port  
    1433 TCP Static (MS SQL) Database port Can be changed in conf/database_params.conf file or dbconfiguration.bat file.
    13306 TCP Static (PostgreSQL) Database port Can be changed in conf/database_params.conf file.

    Ports used for monitoring

    Port Protocol Port Type Usage Remarks
    1514 UDP Static Syslog port
    (Firewall log receiver port for Firewall Analyzer)
    Can be changed via web client.

    Ports used by add-ons

    For ports used by OpMnager add-ons, refer OpManager system requirements page.

     

    Database Requirements

    The following table lists the basic requirements for your Firewall Analyzer database server.

    PostgreSQL

    • Standalone Edition - Bundled with the product.
    • Distributed Edition - Bundled with the product. We recommend MS SQL.

    Microsoft SQL

    1. Supported versions
      • SQL 2016
      • SQL 2014
      • SQL 2012
      • SQL 2008
    2. Important Notices
      1. For production use 64 bit versions of SQL
      2. Recovery mode should be set to SIMPLE.
      3. SQL and Firewall Analyzer should be in the same LAN. Currently WAN based SQL installations are not supported.
    3. Collation
      1. English with collation setting (SQL_Latin1_General_CP1_CI_AS)
      2. Norwegian with collation setting (Danish_Norwegian_CI_AS)
      3. Simplified Chinese with collation setting (Chinese_PRC_CI_AS)
      4. Japanese with collation setting (Japanese_CI_AS)
      5. German with collation setting (German_PhoneBook_CI_AS)
    4. Authentication
      • Mixed mode (MS SQL and Windows authentication).
    5. BCP
      • The bcp.exe and bcp.rll must be available in the Firewall Analyzer bin directory.
        The BCP utility provided with Microsoft SQL Server is a command line utility that allows you to import and export large amounts of data in and out of SQL server databases quickly. The bcp.exe and bcp.rll will be available in the MSSQL installation directory. If MSSQL is in a remote machine, copy bcp.exe and bcp.rll files and paste them in the <\Firewall Analyzer\bin> directory.
    Note: The SQL server version compliant with the SQL Native Client must be installed in the same server.

     

    General Information

    The ManageEngine directory (By default: C:\ManageEngine\OpManager) and
    the database directory should be excluded from the antivirus program.