Firewall Analyzer for WatchGuard

Gaining Internet activity insights and keeping abreast about security events is a challenging task as the security appliance generates a huge quantity of security and traffic logs. With a package of features, Firewall Analyzer's reporting capability for WatchGuard firewall appliance fit like a glove enabling you to strengthen the network security. Firewall Analyzer lets you to collect, archive, analyze WatchGuard device logs and generate security and forensic reports.

Network Security and Capacity Management

Network Security and Capacity Management

With Firewall Analyzer, you can access pre-defined reports that help in analyzing bandwidth usage and understanding security and network activities. These reports helps you to study the security vulnerability with top denied hosts, blocked URL hits, attacks, targets, virus, affected hosts, spam, receiving hosts.

Network Security and Capacity Management
Separator
Historical Trend Analysis for Bandwidth Capacity Planning

Historical Trend Analysis for Bandwidth Capacity Planning

Trend reports in Firewall Analyzer trace patterns in network behavior and bandwidth usage over time. Analysis of trend reports gives better insight into the nature of web site traffic or network traffic, and helps you make decisions on capacity planning, business risk assessment, bandwidth management, traffic shaping, and network security posture.

Separator

VPN Usage and Connection Trend Analysis

VPN trend reports show trends in the number of VPN connections accessed through the WatchGuard firewall on a historical and current basis. VPN trends are especially useful in troubleshooting VPN connections, and identifying security risks.

VPN Usage and Connection Trend Analysis

Change Management

Change Management

Change Tracker

Firewall Change Management report keeps track of all changes in Firewall configuration from time to time. It fetches Firewall device configuration using SSH / TFTP protocols.

Separator

Log Analysis

Firewall Analyzer's data repository keeps a record of every change to the firewall, including who made it, what was modified, and when it was done. Track who changed what with an easy-to-use interface that shows you what you need to see in a line-by-line format.

Log Analysis
Separator

Change Monitor Report

Search and report instantly on implementation details for any change happened. This report includes information on who implemented the change, when it was implemented, and on which firewall.

Separator

Change Alerts

Firewall Analyzer for WatchGuard monitors the device and captures all changes, planned or unplanned, and alerts the right people. Notifications can be sent to team members in easy-to-read emails, or to other monitoring systems via syslog.

Separator

Configuration Change Management report

With Firewall Analyzer for WatchGuard, you can ensure that all the configurations and subsequent changes made in the WatchGuard Firewall device are captured periodically and stored in the database. The configuration data is used to generate various reports. With Firewall Analyzer's Configuration Change Management for WatchGuard firewall Appliance you can find out 'who' made 'what' changes, 'when' and 'why'. Not only that, it alerts you in real-time on your mobile phone when changes happen.

Traffic & Bandwidth Management

Near Real-time Bandwidth Monitoring

Firewall Analyzer provides you a unique way to monitor the Internet traffic of the network in near real-time. Firewall traffic data is collected and analyzed to get granular details about the traffic across each firewall. There is no requirement for any probes or collection agents to get these details on the traffic.

Near Real-time Bandwidth Monitoring
Separator

Network Traffic Analyzer

Firewall Analyzer measures network traffic based on the analysis of logs received from different network firewalls. Firewall logs are collected, archived, and analyzed to get granular details about traffic across WatchGuard firewall devices.

Separator
Employee Internet Usage Monitoring

Employee Internet Usage Monitoring

With Firewall Analyzer for WatchGuard, you can maximize the business usage of Internet bandwidth using employee Internet monitoring. You can fine-tune the Firewall policies to block or restrict bandwidth guzzling web sites and in turn effectively control the employee Internet usage. This will ensure that the bandwidth is available for smooth functioning of the business.

Alarms

Apart from exhaustive firewall reports with respect to network security, Firewall Analyzer offers comprehensive alarms and their notifications.

Alarms can be generated for an anomalous security criteria, bandwidth values, and any normal criteria of security interest.

Alarms can be notified via email and SMS. It can trigger a script to achieve various threat mitigation activities. Alarms are also displayed in the UI screen.

Alarms

WatchGuard supported versions

Company Firewall/Version WELF Certified Other Log Format
WatchGuard
All Firebox Models v5.x, 6.x, 7.x, 8.x, 10.x, 11 or higher
Firebox X series, x550e, x10e, x1000, x750e or later
XTM version 11.9
Available Available

Why Choose Firewall Analyzer

Unlock the real value of your security devices

  • Supports an extensive array of perimeter security device logs which include firewalls, VPNs, IDS/IPS and proxy servers
  • Provides a wide range of reports for external threat monitoring, change management and regulatory compliance

Attractive TCO and rapid ROI

  • No additional hardware required, minimal entry cost and maintenance inclusive subscription model ensures a low TCO
  • Competitively priced. Quick deployment, instant results, reduced IT overhead ensures rapid ROI

Meet dynamic business needs quickly

  • Rapidly transforms perimeter security device logs into actionable information
  • Generates reports in user friendly formats like PDF and CSV formats

Productivity improvement for IT / MSSP

  • From product deployment to report generation in minutes!
  • Real-time alerts to security events enable IT to respond instantaneously to security threats

Steps to Configure

For detailed steps about how to configure Firewall Anlayzer with WatchGuard's firewall appliance you can refer this link here

A single platter for comprehensive Network Security Device Management