Know the Product

Table of Contents

  1. About Firewall Analyzer

    Firewall Analyzer is an easy-to-use, web-based tool that provides in-depth analysis of incoming and outgoing network activity through firewalls, VPNs, and proxy servers. Firewall Analyzer analyzes these logs and generates useful reports on bandwidth usage, user trends, detect anomalies, and firewall activity.

    Such information helps IT administrators manage their enterprise networks pro actively and also accelerates the troubleshooting process.

  2. Release Overview
    1. 12.3 Build 123169

      Issue fixed:

      • Security vulnerability: Cross site scripting(XSS) and arbitrary file read vulnerability in Fail Over has been fixed. [CVE-2018-12997, CVE-2018-12998]
    2. 12.3 Build 123164

      New device supported:

      • MikroTik

      New features:

      • Simulate firewall logs - You can simulate firewall logs for different vendors to check all the reports in Firewall Analyzer. Log simulation is available for Fortigate, PaloAlto, CheckPoint, Juniper SRX and Squid Proxy devices.

      Enhancements:

      • Added more than 3000 websites to the Cloud Repository.
      • Option to plot Dashboard Live traffic graph in 'Kbps/Mbps/Gbps' is available.
      • Support ID: 4598454 - Updated IP to Country database.
      • Support ID: 4573349 - When you import syslog, you can map the logs to the existing device.
      • Support ID: 4590527 - Export to CSV format option is available for expanded view of all 'Inventory' page widgets.
      • 'Admin Report' for PaloAlto available. It covers details of user login, log out, and commands executed.
      • Auto refresh option provide to 'Live Syslog Viewer' page.
      • Mail content format enhanced for scheduled 'Standards' report.
      • Additional tabs Bandwidth, Sites, Apps, and VPN are added in 'Device' inventory snapshot page for better access.
      • License count, number of managed devices and remaining devices count now available under ' License Management' page.
      • Now 'bps' value is formatted to readable format in Bandwidth Alert mail content.

      Issues fixed:

      • Support ID: 4588018 - While creating Alarm profile, configuring more than 50 criteria makes the page unresponsive. This issue is now fixed.
      • Refresh option in 'Dashboard Live Traffic' widget was not working. Now the issue is resolved.
      • AD User-IP Mapping had two entry for an user with Old and New IP. The duplication issue is rectified now.
      • Support ID: 4579510 - Incorrect Rule Name was shown for Zyxel firewall. This issue is now fixed.
      • Support ID: 4480507 - Invalid Byte Sequence Error while loading FirewallRecords table is fixed.
      • While parsing Sonicwall configuration, network objects with IP-range and IPv6 objects were not handled properly. It is fixed now.
      • Finding 'Unused Objects' from configuration file had discrepancy. Now it is rectified.
      • In Japanese Installation, when logs are imported, reports were generated for current time instead of log time. This issue is resolved.
      • 'Edit Interface' & 'Edit Interface Names' were not working, when edited for the second time. This issue is now fixed.
      • Occasionally, the 'Inventory' page became empty when 'Back' icon was clicked. This issue is now resolved.
      • Even after changing display name of Firewall, ' Resource Name' was displayed when user was added from User Management page. Now the issue is fixed to show the device list with display name while assigning device.
      • When Credential Profile was edited, the 'Email' field became empty. Now the issue is fixed to show the given Email Id in that field.
    3. 12.3 Build 123156
      • License Agreement has been updated.
      • Promotions related to ITOM Events will be displayed in the UI header after login.
    4. 12.3 Build 123137

      New features:

      • Introduced 'Audit Report' for all add, delete, and update actions done by Firewall Analyzer user. All the user actions are logged.
      • Option to search personal information like Email, phone number and user name across the product and replace them with another user is available under 'Privacy Settings'

      Enhancements:

      • 'Security Audit Report' is now available in PDF format. You can export the report in PDF format from client.
      • Disclaimer added in exported PDF & CSV to convey availability of Personally Identifiable Information (PII) of GDPR.

      Issues fixed:

      • Option to add new Custom Report was not visible in UI. Now the issue is fixed.
    5. 12.3 Build 123129
      • Path Traversal vulnerability in uploadMib API has been fixed.
      • The RemodeCodeExecution(RCE) vulnerability occurring while testing scripts has been fixed.
      • The SQL injection vulnerability in "FailOverHelperServlet" for the operation 'standbyprobestatus' has been fixed.
      • The SQL injection vulnerability in "FailOverHelperServlet" for the operation 'getprobenetworkshare' has been fixed.
      • In Group Chat Module, "Operator" user was not restricted from viewing the list of users, their User ID and Email addresses. This issue has been fixed.
      • Previously, "Operator" user was not restricted from viewing the URL monitors in the Inventory Page. This issue has been fixed.
      • Previously, "Operator" user was not restricted from being able to modify the background color and the tile color in the 3D floor view page. This issue has been fixed.
    6. 12.3 Build 123126

      Admin Server

      • Enterprise edition for 12.3 version
      • Data Migration tool for enterprise edition 8.5 customers to upgrade to 12.3

      Standalone/Collector Server

      • Compliance reports and Policy/Rule Management support for WatchGuard device
      • Compliance reports and Policy/Rule Management support for SonicWALL device.
      • Policy/Rule re-order report for PaloAlto device
    7. 12.3 Build 123092

      Enhancements

      • Default reports enhanced with drill down option to second and third level. Particularly for 'Unknown Protocols', you can drill down up to raw log level.
      • 'End User' feature moved to 'Firewall Inventory' tab. You can get 'End User' details from 'Users' Tab.
      • 'Rule Management' and 'Compliance Reports' files stored in Firewall Analyzer server directory are encrypted now.
      • User information is encrypted at the database storage.
      • 'CSV Export' option is available for 'Rule Management' reports.
      • 'Scheduled Report' mail format is enhanced to show properly aligned mail content.
      • Support - 4458020: In 'Change Management' report, new column has been added to show the IP address of user from which he did configuration changes.
      • Support - 4429668: 'Admin' report is available for Huawei Firewall. You can view user login, logout and command executed reports.

      Issues Fixed

      • Support - 4477638: Fixed the issue of incorrect data shown in 'Policy Optimization reports' for some PaloAlto devices.
      • Support - 4519337: Fixed the issue of not fetching configuration files from SonicWALL firewalls due to incorrect SCP command.
      • Support - 4497009: Fixed issues in 'Denied Events' and URL log parsing for Juniper SRX devices.
      • Support - 4510780: Fixed the issue of wrong time period shown in i-Filter reports data, due to non-processing of time stamp available in the logs.
      • Support - 4496764: Fixed the issue of mismatch in rules count of unused rules and total rules displayed for some PaloAlto firewalls.
      • Issue - 126991: In PaloAlto firewall 'Policy Overview' page, no data was displayed when clicked on some source and destination objects. This issue is fixed.
      • Fixed the issue of no data display in 'Total Bytes' column in Trend Micro device reports, due to non-processing of byte value available in the logs.
    8. 12.3 Build 123083

      Enhancements

      • Dashboard loading has been revamped and optimized for better performance.
      • In the Login page, iPhone/Android and iPad application download links have been included.
      • License expiry information in header had a few alignment issues. This has now been fixed.
      • User Icon with product details and about information has been moved to right top corner.
      • In the Inventory page, product based tabs have been moved horizontally.
      • Sign out option has been moved from Quick links to User details menu.
      • Support icon has been added for (Mail, Apply license, phone number, SIF, User guide, Videos, Service pack, ThreadDump, DB Query & view Logs) links.
      • In support page, the Query page under DB Query will be opened in a new window without ember.
    9. 12.3 Build 123064

      Enhancements

      • Provision to configure each device in the Inventory itself. For a single device, you can configure Report, Alert, Device Rule, and SNMP in one place.
      • Ad-hoc reports are listed in the drill down page of 'Device' under Inventory.
      • 'Device' summary widget under Inventory, is enhanced to show more device configuration options.
      • Cloud Control Repository updated and new services added.
      • 'No Data' message will be displayed in widget header, if a widget has no data to display. If the widget has data, total number of rows will be displayed.
      • Reduced the 'Inventory' page loading time.
      • By default, indexing enabled for Security Logs.
      • Support Id: 4400799 - New widget added under drill down page of 'Cloud Control'. The widget shows all source IP addresses, who accessed the corresponding 'Cloud' service.

      Issue Fixes

      • Support Id: 4223153 - Bandwidth Alert profiles created with criteria 'mbps' were not working. This issue is fixed.
      • Support Id: 4223153 - URL report, date and priority parsing issues of pfSense firewall is fixed.
      • Support Id: 4275699 - When one Juniper SRX device was added it was displayed as two devices. This was due to absence of firewall name in some syslogs. This issue is fixed to show it as a one device.
      • Issue Id: 124479 - Earlier user couldn't edit the report filter while creating 'Report Profile'. Now 'Edit' option provided for the report filters to fix the issue.
      • Issue Id:126112 - After selecting custom time period in 'Inventory' drill down page, the end time was not shown properly. This issue is fixed.
      • Issue Id:126077 - In 'Add Credential Profile' page, 'Device Type' option is moved up near 'Protocol' for better accessibility.
      • Issue Id:126332 - In 'Device Rule' list page, sorting of any column, removed 'Fetch Rules' and 'Security Audit Report' icons. This issue is fixed.
    10. 12.3 Build 123057

      Vulnerability fixes

      • DDI-VRT-2018-02 – Unauthenticated Blind SQL Injection via /servlets/RegisterAgent
      • DDI-VRT-2018-03 – Unauthenticated Blind SQL Injection via /servlets/StatusUpdateServlet and /servlets/AgentActionServlet
      • DDI-VRT-2018-04 – Multiple Unauthenticated Blind SQL Injections via /embedWidget
      • DDI-VRT-2018-05 – Unauthenticated XML External Entity Injection via /SNMPDiscoveryURL
      • DDI-VRT-2018-06 – Unauthenticated Blind SQL Injection via /unauthenticatedservlets/ELARequestHandler and /unauthenticatedservlets/NPMRequestHandler
      • DDI-VRT-2018-07 – User Enumeration via /servlets/ConfServlet.
    11. 12.3 Build 123052

      Issues fixed

      • Issue: The possibility to fetch user details through ConfServlet has been fixed and is secured now.
    12. 12.3 Build 123045

      New device/log format support

      • Support Id: 4385377 - i-Filter Version10 device logs support

      Enhancements

      • System settings (General and logging) page added for Firewall Analyzer module to enhance the customization
      • Drill-down, from graph, for all reports along with table values
      • Labels for the reports graph for X and Y axis are shown
      • Custom time period has been shown properly in Inventory, Reports, Standards and End-Users reports based on earlier time selection
      • Inventory snapshot start-time and end-time shown for all time periods under clock icon
      • Filter option provided for source in live Syslog viewer

      Issues fixed

      • Issue Id: 122137 - Missed internationalization keys in Compliance Standard Reports fixed.
      • Issue Id: 123950 - Non-internationalized Total & other key are internationalized in Firewall reports.
      • Issue Id: 125439 - Disabling VDOM in User Config option deletes all device rules configured.
      • Issue Id: 125440 - Newly supported 'Device Rule Vendor' list added in Credential Profile page.
      • Issue Id: 121670 - Log Level debug settings for logger-name not handled.
      • Issue Id: 125070 - Graph Unit is not internationalized in snapshot widget header.
      • Issue Id: 123955 - 'No Data' string in some graph is not internationalized.
      • Issue Id: 123859 - Live Report drill-down didn't pass proper time-range.
      • Issue Id: 125582 - While sorting the column in table data leads to table empty in Traffic Trend report.
      • Issue Id: 125598 - Getting 'NullPointerException' in weekly trend comparison reports page.
      • Issue Id: 125456 - Getting 'NullPointerException' while parsing SonicWall logs.
      • Support Id: 4343907 - Data movement to data tables isn't working due to large duration value in few Syslogs in SonicWALL device.
    13. 12.3 Build 123027

      Enhancements

      • The 'Automatic/On-click/No lookup' options of Resolve DNS in global settings synchronized for all widgets.
      • Two more SMS service Clickatell and AppSMS supported to send SMS notifications for 'Alarms, Configuration changes, and Availability Alerts'

      Issues fixed

      • 123396 - If dashboard data is with '\', in its drilldown page data is shown without '\' . The issue is resolved to display it properly.
      • 121669 - When Traffic Conversation Table in Interface drilldown page is expanded, it was displaying only top 10 rows. Issue fixed to display complete data.
      • 123760 - In CCTV view, Operator can view unauthorized device's Live Traffic. Issue is fixed by hiding it.
      • 122774 - In one of the 'Proxy Reports', when Search icon is clicked, empty page was displayed. Issue fixed to display appropriate page.
      • 123955 - 'No Data' message not internationalized in some graphs, issue fixed by internationalizing it.
      • 122298 - In dashboard traffic and security statistics report, when Search icon is clicked, empty page was displayed. Issue fixed to display appropriate page.
      • 124212 - 'In' & 'Out' legends in Device Summary graph were not internationalized, issue fixed by internationalizing it.
      • 121712 - Fixed memory handling issue, during user association and manual IP mapping when device is deleted.
      • 123826 - Fixed an issue in reimport option of manual IP mapping.
      • 120736 - Fixed issues in FWA Availability alert page UI and Disable notification link in the alert notification mail
      • 122140 - Fixed an issue in script error handling, when a schedule is added for Compliance report without selecting any type of standards.
      • 125095 - In standard compliance reports, if clicked to drill down the report, the table values are not displayed. Fixed the issue for table value display.
      • 125093 - User with '\' character could not be added, for 'End Users' reports. Fixed the issue to add user.
      • 123942 - There was an UI alignment issue in NetFlow widget populated in OpManager's End Users report. Fixed the issue to align the UI.
      • 122493 - In the dashboard, snapshot view of Cloud Users report, fixed the issue of missing 'Expand View' icon.
      • 124899 - Fixed the issue in Disable notification option of the change management alert notification mail.
      • 124613 - When TLS option was configured in Mail Server settings, mail notifications for alerts were not sent. Fixed the issue to send mails.
      • 124090 - Fixed the misalignment issue in Policy Overview report table. This was for MS SQL database.
      • 122970 - When a new report type is added with the existing name, 'Success' message is displayed. Fixed the issue to display 'Failed' message.
      • 125067 - Fixed the issue to populate rule details of SRX devices, when the configuration file is not having network object details.
      • 125059 - In the 'Unused Rules' report of 'Rule Management', the resource criteria is not applied properly. Fixed the issue to apply the resource criteria properly.
      • 4245966 - In FWA, log entries for unsuccessful console login attempt on Cisco ASA devices are not there. Fixed the issue to get entries.
      • 4206352 - Issue, in SonicWALL log parsing for protocol, is fixed.
      • 4086698 - All the IPs are not getting resolved into names, when 'Resolve DNS' is set to 'Automatic'. Fixed the issue to resolve all IPs.
      • 4250080 - When scheduled PDF report page count is more than 100, the total page count in PDF footer was not proper. Fixed the issue for proper page count.
      • 4300246 - Fixed the out of memory error generated when change management report was accessed.
    14. 12.3 Build 123008

      Issue fixes

      • Device rule configuration using SCP protocol was not functioning in build 12300. Now this issue is fixed.
      • Sometimes, SRX marked as unsupported device, if Firewall Analyzer receives unsupported log as the very first record. Now, wait time is added to check more received logs to avoid unparsed error.
      • System performance and custom dashboard view were missing when logged in for the first time. Now the issue is fixed and the user can view both.
      • Editing widget "Top N Hosts by Traffic" and selecting Protocol under category makes the widget to show data of protocol-group by traffic. Now, the issue is fixed by showing Protocol-Group instead of Protocol in dashboard widget - edit section.
      • 'Live Syslog Viewer' status shown as 'undefined' when we do continuous refresh. Now the status message handling issue is fixed in the server side to show proper status in the UI for continuous refresh.
      • Increased the data dumb volume from base table 'Firewall Records' to next level data table for database performance increase.
      • Inventory Interface snapshot traffic conversation report's last row was not shown properly in UI. Now the issue is fixed and the report loads the data properly.
      • Graph units option provided in the Inventory LiveReports page was not in proper sequence. This is issue is fixed and the units are now shown in proper order like kbps,mbps and gbps.
      • When the user selects all predefined reports while creating a report profile, received PDF shows all the reports name in the home page without proper alignment. Now, Alert Message added for Report Profile reports selection

      New Features

      • Previously, there was no option to view the selected time-period of each dashboard widgets. Now, sub-header details will be shown in each widgets with device information along with time-period applied.
    15. 12.3 Build 12300

      New Devices/Log Formats Supported

      • Trend Micro IWSVA 6.5
      • Palo Alto VPN logs
      • FortiGate Management logs
      • Juniper SRX Management logs
      • SonicWall IPSec VPN logs
      • New easy to use revamped web client

      New Features

      • 'Insider Threat' reports to track internal user's cloud application usage
      • Drill down for all dashboard reports
      • Exclude IP/IP range/network from reporting
      • URL and VPN reports for Inventory report user drill down
      • Live report for Proxy servers
      • Live report drill down for device and interfaces from Inventory
      • Interface Live Traffic widgets in Custom Dashboard
      • End User widgets in Custom Dashboard
      • Anomaly Alerts based on Country
      • User specific reports for Proxy servers
      • Option to export report as CSV on demand
      • Option to use Management IP address to fetch device configuration
      • Option to configure 'Row Count' for on-demand PDF/CSV report export
      • More reports for Rules in Device snapshot
    16. 12.2 Build 12200

      12.2 - Build 12200 - Standalone Edition

      The general features available in this release are:

      New Features

      • Firewall Analyzer is integrated with OpManager
      • New easy to use revamped web client
      • Schedule option for Interface live report

      New Device/Logs/Reports

      • WebMarshal Proxy Server
      • Juniper-SRX - VDOM logs support
      • McAfee - SideWinder Firewall
      • i-Filter Proxy Server
      • PfSense open source firewall
    • System Requirements
      1. Platform Requirements

        Hardware Platform

        • 1GHz Pentium Dual Core processor or equivalent
        • 2 GB of RAM
        • 5 GB of disk space
        • Monitor that supports 1024x768 resolution

        Please refer our web site for recommended system requirements

        Software Platform
         
         

        Windows®

        • Windows 8
        • Windows 7
        • Windows NT
        • Windows 2000
        • Windows XP
        • Windows Vista
        • Windows 2000 Server
        • Windows 2003 Server
        • Windows 2008 Server
        • Windows 2012 Server
        • Windows 2016 Server

        Linux

        • Ubuntu
        • Fedora
        • OpenSuSE
        • CentOS
        • Red Hat RHEL
        • Mandrake
        • Mandriva
        • Debian

        VMware

      2. Web Browser Requirements
        • Internet Explorer 8 and later
        • Firefox 4 and later
        • Chrome 8 and later
    • Installation
      1. Installing and Uninstalling

        This section explains the key steps for installing Firewall Analyzer. Refer the User Guide for detailed Firewall Analyzer installation information.

        Installing on Windows

        • Double-click the ManageEngine_OpManager_FireWall.exe or ManageEngine_OpManager_FireWall_64bit.exe file to launch setup program

        Uninstalling from Windows

        • Click on Start > Programs > ManageEngine Firewall Analyzer x > Uninstall Firewall Analyzer to uninstall Firewall Analyzer from the machine.

        Installing on Linux

        • Assign execute permission to the ManageEngine_FireWallAnalyzer.bin or ManageEngine_FireWallAnalyzer_64bit.bin file using the following command:
          chmod a+x ManageEngine_FireWallAnalyzer.bin or ManageEngine_FireWallAnalyzer_64bit.bin
        • Execute the following command:
          ./ManageEngine_FireWallAnalyzer.bin or
          ./ManageEngine_FireWallAnalyzer_64bit.bin

          Note: If you get an error message stating that the temp directory does not have enough space, try executing this command with the -is:tempdir <directory_name> option (where <directory_name> is the absolute path of an existing directory)
          ./ManageEngine_Firewall_Analyzer_x_linux.bin -is:tempdir <directory_name>

        • Follow the instructions in the setup program.

        Uninstalling from Linux

        • Navigate to the <Firewall Analyzer Home>/server/_uninst directory.
        • Execute the command:
          uninstaller.bin
        • You will be asked to confirm your choice, after which Firewall Analyzer is uninstalled.
      2. Default ports used by Firewall Analyzer

        The following are the default ports used by Firewall Analyzer:

        Web Server port (to access from a web browser): 8500 (TCP)

        Firewall Listener port (to direct firewall, proxy logs): 514, 1514 (UDP)

        PostgreSQL port (to connect to the built-in PostgreSQL database): 33336 (TCP)

    • Starting and Shutting Down

      Starting in Windows

      1. Click on Start > Programs > ManageEngine Firewall Analyzer x > Firewall Analyzer to start the server.
        Alternatively you can navigate to the <Firewall Analyzer Home>\bin folder, and invoke the run.bat file.
      2. Once the server has successfully started, you can either use the Start WebClient tray-icon option or alternatively open a web browser and type the URL, http://<hostname>:8500
        (replace <hostname> with the name of the machine on which Firewall Analyzer is installed, and 8500 with the web server port specified during installation).

      Shutting Down from Windows

      1. Click on Start > Programs > ManageEngine Firewall Analyzer x > Shutdown Firewall Analyzer to shut down the server. Alternatively you can navigate to the <Firewall Analyzer Home>\bin folder, and invoke the shutdown.bat file. As already mentioned, you can also make use of the tray-icon option Shutdown Server

      Starting in Linux

      1. Navigate to the <Firewall Analyzer Home>/bin directory and execute the run.sh file to start the Firewall Analyzer server.
      2. >
      3. Once the server has successfully started, open a web browser and type the URL, http://<hostname>:8500 (replace <hostname> with the name of the machine on which Firewall Analyzer is installed, and 8500 with the web server port specified during installation)

      Shutting down from Linux

      1. Navigate to the <Firewall Analyzer Home>/bin directory, and execute the shutdown.sh file to shut down the server.
    • Document Set

      The documentation set for this product includes:

      • This README.html - version enhancements, basic installation, known issues, release notes Online
      • Help - Context-sensitive help screens that provide guidance for performing a task
      • User Guide - Includes a product overview, and sections such as frequently asked questions, troubleshooting tips, etc.
    • Contact Information

      Technical Support: fwanalyzer-support@manageengine.com
      Web site: http://www.fwanalyzer.com/ | https://www.manageengine.com/products/firewall/
      Toll-free: +1 888 720 9500

      Firewall Analyzer licenses usually include the right to patches, service packs, and minor upgrades apart from technical support for one (1) year from the date of purchase. After the first year, Maintenance must be renewed on an annual basis.

    • About ZOHO Corp®

      Enabling Management Your WayTM

      ZOHO Corp. provides affordable software in the areas of network applications and database tools. With a broad product portfolio and an active customer base ranging from enterprises, equipment vendors and service providers, ZOHO Corp. has emerged as a very affordable and high-quality alternative to expensive software that is common in the industry. ZOHO Corp. is headquartered in Pleasanton, CA with offices in NJ, MA, India, UK, China and Japan and has a well-trained partner base around the globe.

      Visit us at https://www.zohocorp.com/

      Copyright © 2017, ZOHO Corp. All rights reserved.

      ZOHO Corp., ManageEngine, Enabling Management Your Way are trademarks of ZOHO Corp. All other trademarks are the property of their respective owners.

    • License Agreement

      TERMS OF SALE FOR MANAGEENGINE SOFTWARE PRODUCTS

      1. Your Acceptance of the Terms of Sale

      Thank you for visiting the Zoho Corporation Private Limited ("we" or "Zoho") website, www.manageengine.com (the "Website"). This document ("Terms of Sale") is a legal agreement between you or the entity that you represent ("you") and Zoho, and governs your download and purchase of ManageEngine software products from the Website.

      PLEASE NOTE THAT YOUR USE OF THE WEBSITE TO DOWNLOAD A SOFTWARE PRODUCT CONSTITUTES ACCEPTANCE OF THE TERMS OF SALE, AND TERMS AND CONDITIONS OF THE END USER LICENSE AGREEMENT PROVIDED BELOW. IF YOU DO NOT AGREE TO THE TERMS OF SALE, OR TERMS OF THE END USER LICENSE AGREEMENT, PLEASE EXIT THE WEBSITE WITHOUT CONTINUING THE ORDERING AND/OR DOWNLOADING PROCESS.

      2. Purpose:

      The purpose and intent of this Website is to provide information on software products (the "Software") that we make available for download and purchase through the Website.

      3. Download of Evaluation Version:

      We offer the Software for download on a free trial basis pursuant to an Evaluation License as set out in our End-User License Agreement set forth below ("EULA"). Your use of the copy of the evaluation version of the Software is subject to the applicable terms and conditions of the EULA.

      4. Purchase of Commercial Licenses:

      After the expiration of the evaluation period, you may obtain through the Website a Commercial License of the Software pursuant to the Annual Subscription, Perpetual, or if applicable, the Free Edition, as set out in the EULA. Your use of the copy of the Software is subject to the applicable terms and conditions of the EULA.

      Our authorized U.S. reseller, Zoho Corporation ("Distributor"), is responsible for sales of Commercial Licenses within the U.S. region. Your purchase of a Commercial License within the U.S. region is subject to any pricing or any special terms of sale that may be agreed between you and Distributor. You are responsible for providing Distributor with a valid credit card number or other acceptable means of payment to secure payment. Distributor reserves the right to cancel any order if the credit card number you provide is not valid.

      END USER LICENSE AGREEMENT

      THE following terms constitute a binding agreement between you and Zoho with respect to use of ManageEngine Firewall Analyzer ("Licensed Software")

      1. EVALUATION LICENSE:

      Zoho Corporation Private Limited ("Zoho") grants to you a non-exclusive, non-transferable, Evaluation License for trial and evaluation of the Licensed software, in binary object code form, for a period of thirty (30) days from the date of download or installation. This License begins upon downloading or installing the Licensed Software and ends thirty (30) days thereafter ("Evaluation Period").

      If you are not willing to use the Licensed Software, either the Free Edition or the Professional/Premium/Distributed Edition, after the Evaluation Period, delete all the copies installed in your computer with immediate effect. You are forbidden from using the Licensed Software for any other use or otherwise offering it for resale under the terms of this Section 1. Zoho retains all rights not specifically granted to you herein.

      2. COMMERCIAL LICENSE:

      Annual Subscription License: As part of your choosing annual subscription license, Zoho grants you a fee-bearing, nonexclusive, non-transferable, world-wide license to Use the Licensed Software including user documentation, updates and upgrades to which you are entitled as well as any plug-ins provided to you during the period of your subscription, provided that such access and Use of the Licensed Software is in accordance with the Single Installation License granted by Zoho. Under the Subscription License, the Licensed Software is licensed only for a subscription period of one year. You must renew your license at least 10 days before the expiry of the subscription period in order to continue using the Licensed Software. If you do not renew the license, you agree to stop using the Licensed Software after end of the subscription period and remove the Licensed Software from your systems

      Perpetual License: As part of your choosing perpetual license, Zoho grants you a fee-bearing, nonexclusive, non-transferable, perpetual, world-wide license to Use the Licensed Software including user documentation, updates and upgrades to which you are entitled as well as any plug-ins provided to you, provided that such access and Use of the Licensed Software is in accordance with the Single Installation License granted by Zoho.

      "Use" means storing, locating, installing, executing or displaying the Licensed Software according to the license procured by you.

      "Single Installation License" means that the license key provided shall not be used for more than one concurrent Use of the Licensed Software.

      3. THIRD PARTY PRODUCTS:

      The Licensed Software may contain software which originated with third party vendors and without limiting the general applicability of the other provisions of this Agreement, you agree that (a) the title to any third party software incorporated in the Licensed Software shall remain with the third party which supplied the same; and (b) you will not distribute any such third party software available with the Licensed Software, in any manner.

      4. RESTRICTIONS ON USE:

      In addition to all other terms and conditions of this Agreement, you shall not: (i) install one copy of the Licensed Software on more than one CPU; (ii) remove any copyright, trademark or other proprietary notices from the Licensed Software or its copies; (iii) make any copies except for one back-up or archival copy, for temporary emergency purpose; (iv) rent, lease, license, sublicense or distribute the Licensed Software or any portions of it on a standalone basis or as part of your application; (v) modify or enhance the Licensed Software; (vi) use the Licensed Software in a computer-based services business or publicly display visual output of the Licensed Software or use the Licensed Software for the benefit of any other person or entity; (vii) reverse engineer, decompile or disassemble the Licensed Software; or (viii) allow any third parties to access, use or support the Licensed Software.

      5. TECHNICAL SUPPORT:

      As part of subscription license, Zoho provides support that includes email support for problem reporting, product updates, upgrades and online access to product documentation at no additional cost for the period of subscription. Technical Support is not included as part of perpetual license. You may purchase technical support services for perpetual license by paying the then current maintenance and support fee.

      6. COLLECTION OF USAGE DETAILS

      ZOHO collects details pertaining to your usage of the Licensed Software such as the license details, type of installation, configuration of database, configuration of data storage, configuration of the system in which the Licensed Software is installed, statistics pertaining to the total number of devices and total number of events handled, top pages visited, and frequency of use of the various features of the Licensed Software. ZOHO agrees to furnish the data collected regarding your usage of the Licensed Software upon request by you. You understand and acknowledge that collection of Usage Details is enabled by default and that it needs to be disabled through the Licensed Software's user interface if you do not wish to allow ZOHO to collect Usage Details.

      7. OWNERSHIP AND INTELLECTUAL PROPERTY:

      Zoho owns all right, title and interest in and to the Licensed Software. Zoho expressly reserves all rights not granted to you herein, notwithstanding the right to discontinue or not to release any Licensed Software and to alter prices, features, specifications, capabilities, functions, licensing terms, release dates, general availability or characteristics of the Licensed Software. The Licensed Software is only licensed and not sold to you by Zoho.

      8. AUDIT:

      Zoho has the right to audit your Use of the Licensed Software by providing at least seven (7) days prior written notice of its intention to conduct such an audit at your facilities during normal business hours.

      9. CONFIDENTIALITY:

      The Licensed Software contains proprietary information of Zoho that are protected by the laws of the United States and you hereby agree to take all reasonable efforts to maintain the confidentiality of the Licensed Software. You agree to reasonably communicate the terms and conditions of this Agreement to those persons employed by you who come into contact with or access the Licensed Software, and to use reasonable efforts to ensure their compliance with such terms and conditions, including but not limited to, not knowingly permitting such persons to use any portion of the Licensed Software for a purpose that is not allowed under this Agreement.

      10. WARRANTY DISCLAIMER:

      Zoho does not warrant that the Licensed Software will be error-free. Except as provided herein, the Licensed Software is furnished "as is" without warranty of any kind, including the warranties of merchantability and fitness for a particular purpose and without warranty as to the performance or results you may obtain by using the Licensed Software. You are solely responsible for determining the appropriateness of using the Licensed Software and assume all risks associated with the use of it, including but not limited to the risks of program errors, damage to or loss of data, programs or equipment, and unavailability or interruption of operations.

      11. LIMITATION OF LIABILITY:

      In no event will Zoho be liable to you or any third party for any special, incidental, indirect, punitive or exemplary or consequential damages, or damages for loss of business, loss of profits, business interruption, or loss of business information arising out of the use or inability to use the program or for any claim by any other party even if Zoho has been advised of the possibility of such damages. Zoho's entire liability with respect to its obligations under this agreement or otherwise with respect to the Licensed Software shall not exceed the amount of the license fee paid by you for the Licensed Software.

      12. INDEMNIFICATION:

      Zoho agree to indemnify and defend you from and against any and all claims, actions or proceedings, arising out of any claim that the Licensed Software infringes or violates any valid U.S. patent, copyright or trade secret right of any third party; so long as you provide; (i) prompt written notice to Zoho of such claim; (ii) cooperate with Zoho in the defense and/or settlement thereof, at Zoho's expense; and, (iii) allow Zoho to control the defense and all related settlement negotiations. The above is Zoho's sole obligation to you and shall be your sole and exclusive remedy pursuant to this Agreement for intellectual property infringement.

      Zoho shall have no indemnity obligation for claims of infringement to the extent resulting or alleged to result from (i) any combination, operation, or use of the Licensed software with any programs or equipment not supplied by Zoho; (ii) any modification of the Licensed Software by a party other than Zoho; and (iii) your failure, within a reasonable time frame, to implement any replacement or modification of Licensed Software provided by Zoho.

      13. TERMINATION:

      This Agreement is effective until terminated by either party. You may terminate this Agreement at any time by destroying or returning to Zoho all copies of the Licensed Software in your possession. Zoho may terminate this Agreement for any reason, including but not limited to your breach of any of the terms of this Agreement. Upon termination, you shall destroy or return to Zoho all copies of the Licensed Software and certify in writing that all know copies have been destroyed. All provisions relating to confidentiality, proprietary rights, non-disclosure, and limitation of liability shall survive the termination of this Agreement.

      14. GENERAL:

      If you are a resident of the United States or Canada, this Agreement shall be governed by and interpreted in all respects by the laws of the State of California, without reference to conflict of laws' principles, as such laws are applied to agreements entered into and to be performed entirely within California between California residents. If you are a resident of any other country, this Agreement shall be governed by and interpreted in all respects by the laws of the Republic of India without reference to conflict of laws' principles, as such laws are applied to agreements entered into and to be performed entirely within the Republic of India between residents of the Republic of India. If you are a resident of the United States or Canada, you agree to submit to the personal jurisdiction of the courts in the Northern District of California. If you are a resident of any other country, you agree to submit to the personal jurisdiction of the courts in Chennai, India. This Agreement constitutes the entire agreement between the parties, and supersedes all prior communications, understandings or agreements between the parties. Any waiver or modification of this Agreement shall only be effective if it is in writing and signed by both parties hereto. If any part of this Agreement is found invalid or unenforceable, the remainder shall be interpreted so as to reasonable effect the intention of the parties. You shall not export the Licensed Software or your application containing the Licensed Software except in compliance with United States export regulations and applicable laws and regulations.

A single platter for comprehensive Network Security Device Management