Firewall Analyzer - System Requirements

The system requirements mentioned below are minimum requirements for a specific log rate. The sizing requirements will vary based on the load.

Hardware requirements

Standalone edition

Firewall log rate
Processor Memory Hard disk space
 Upto 500 logs/second Intel Xeon Quad Core 3.5 GHz 8 GB 90 GB/day for 500 logs/second
 More than 500 logs/second Intel Xeon Quad Core 3.5 GHz 16 GB 90 GB/day for every 500 logs/second

Distributed edition

Admin server

Firewall log rate
Processor Memory Hard disk space
 Upto 500 logs/second Intel Xeon Quad Core 3.5 GHz 8 GB 90 GB/day for 500 logs/second
 More than 500 logs/second Intel Xeon Quad Core 3.5 GHz 16 GB 90 GB/day for every 500 logs/second

Collector server

Firewall log rate
Processor Memory Hard disk space
 Upto 500 logs/second Intel Xeon Quad Core 3.5 GHz 8 GB 90 GB/day for 500 logs/second
 More than 500 logs/second Intel Xeon Quad Core 3.5 GHz 16 GB 90 GB/day for every 500 logs/second

Refer Firewall Analyzer Sizing Guide for hard disk space and PostgreSQL tuning.

Note:
  • CPU recommendation for deployments use the PassMark® score. To learn more, click here.
  • We strongly recommend assigning a dedicated machine for Firewall Analyzer

 

Software requirements

The following table lists the recommended software requirements for an Firewall Analyzer installation.

Software Up to 500 logs/second More than 500 logs/second
Windows OS Servers:
Windows 2019
Windows 2016
Windows 2012 R2
Windows 2012
Windows 2008 R2
Windows 2008
Windows 2003
Windows 2000 Prof SP4

Windows 10
Windows 8
Windows 7
Windows Vista
Windows 2012
Windows 2008 R2 64 bit
Linux OS RedHat 4.x and above
Debian 3.0
Open Suse
Fedora
Mandrake
Ubuntu
CentOS
Red Hat RHEL
Mandriva

VMware

CentOS 64 bit
Any Linux distribution with
glibc >= 2.3 and
X libraries installed
Browsers Chrome (preferred)/ Firefox/ Edge/ IE11

Do not use Firewall Analyzer Distributed Edition in Internet Explorer.
This will cause IE11 to work as IE7 which is not supported.
Chrome (preferred)/ Firefox/ Edge/ IE11

 

Note: User Privilege: Local administrator privileges required for Firewall Analyzer installation.

 

Port requirements

The following are the ports and protocols that Firewall Analyzer uses for communication.

Ports used by the application

Port Protocol Port Type Usage Remarks
80 TCP Static Web server port Can be configured using ChangeWebServerPort.bat file.
22 TCP Static SSH port  
1433 TCP Static (MS SQL) Database port Can be changed in conf/database_params.conf file or dbconfiguration.bat file.
13306 TCP Static (PostgreSQL) Database port Can be changed in conf/database_params.conf file.

Ports used for monitoring

Port Protocol Port Type Usage Remarks
1514 UDP Static Syslog port
(Firewall log receiver port for Firewall Analyzer)
Can be changed via web client.

Ports used by add-ons

For ports used by OpMnager add-ons, refer OpManager system requirements page.

 

Database Requirements

The following table lists the basic requirements for your Firewall Analyzer database server.

PostgreSQL

  • Standalone Edition - Bundled with the product.
  • Distributed Edition - Bundled with the product. We recommend MS SQL.

Microsoft SQL

  1. Supported versions
    • SQL 2016
    • SQL 2014
    • SQL 2012
    • SQL 2008
  2. Important Notices
    1. For production use 64 bit versions of SQL
    2. Recovery mode should be set to SIMPLE.
    3. SQL and Firewall Analyzer should be in the same LAN. Currently WAN based SQL installations are not supported.
  3. Collation
    1. English with collation setting (SQL_Latin1_General_CP1_CI_AS)
    2. Norwegian with collation setting (Danish_Norwegian_CI_AS)
    3. Simplified Chinese with collation setting (Chinese_PRC_CI_AS)
    4. Japanese with collation setting (Japanese_CI_AS)
    5. German with collation setting (German_PhoneBook_CI_AS)
  4. Authentication
    • Mixed mode (MS SQL and Windows authentication).
  5. BCP
    • The bcp.exe and bcp.rll must be available in the Firewall Analyzer bin directory.
      The BCP utility provided with Microsoft SQL Server is a command line utility that allows you to import and export large amounts of data in and out of SQL server databases quickly. The bcp.exe and bcp.rll will be available in the MSSQL installation directory. If MSSQL is in a remote machine, copy bcp.exe and bcp.rll files and paste them in the <\Firewall Analyzer\bin> directory.
Note: The SQL server version compliant with the SQL Native Client must be installed in the same server.

 

General Information

The ManageEngine directory (By default: C:\ManageEngine\OpManager) and
the database directory should be excluded from the antivirus program.

 

A single platter for comprehensive Network Security Device Management