Product docs
Home » Resources » Supported Vendors

Firewall Analyzer is compatible with the following firewall devices.

Click on the device name (if applicable) to see instructions on configuring firewalls for reporting and sending logs to the Firewall Analyzer.

Firewall Analyzer provides detailed reports on network traffic and security insights derived from Syslog data across various firewall vendors. Click here to learn more about the supported firewall vendors and available report types.

 

Firewall Analyzer Compatible Firewalls

CompanyFirewall - VersionWELF CertifiedOther Log Format
Check Point

Log import from all versions and
LEA support for R54 and above
VSX Firewalls - Virtual Edition supported
Log Exporter support for versions R77.30, R80.10, R80.20 and R80.30

How to configure?

 
 
Palo Alto

Palo Alto Firewalls PA 5000 series,
PANOS 4.1.0 or later
supports VSYS
PA-5260, PA 5220, PA-5060, PA-5050, PA-3020, PA 850, PA-220, M-100, VM series

How to configure?

 
 
Cisco Systems

Cisco Pix Secure Firewall v 6.x, 7.x,
Cisco ASA - Virtual Contexts supported
Cisco IOS 3005, 1900, 2911, 3925
Cisco FWSM - Virtual Contexts supported
Cisco VPN Concentrator
Cisco CSC-SSM Module v6.3.x or later
Cisco SSL WebVPN or SVC VPN
Cisco Botnet module
Cisco FireSight module

How to configure?

How to configure with ASDM?

 
 

Cisco FirePower (v 6.3.0 or later), 2100 series and 4100 series

How to configure?

 
 

Cisco IronPort Proxy server.

Cisco IronPort Proxy server - Web Security Appliances

How to configure?

 
 

Cisco Meraki Firewall

How to configure?

 
 

Cisco FirePower Management Center (FMC)

Note: Firewall Analyzer supports only Admin Reports under Reports > Firewall Reports and Audit Logs report under Compliance tab.

 
 
Fortinet

FortiGate family,
SSL VPN (v 300A, v 310B or later)
Webfilter,
DLP,
IPS modules,
IPSec
VDOMs supported

How to configure?

 
 

 
Juniper Networks		Juniper SRX series
SRX100, SRX210, SRX220, SRX240, SRX 550, SRX650, SRX1400, SRX1500, SRX3400, SRX3600, SRX 4100, SRX5600, SRX5800
SRX - Security and Application logs,
VDOM support
IDP,
SSL VPN series
4500 & 6500, New Format Logs
ISG series
2000
6360,
8350 series
 
 
 

NetScreen series, NetScreen most versions of Web Filter & Spam Modules

How to configure?

 
 
SonicWALL

SOHO3,
SOHO TZW, TELE3 SP/TELE3 Spi,
PRO 230, 2040, 3060, 4060, 5060,
TZ 100/ TZ 100w, TZ 170, TZ 170 Wireless, TZ 170 SP Wireless, TZ 200/ TZ 200w, TZ 210/ TZ 210w, TZ 300, TZ 400
NSA 240, NSA 2400, NSA 2400MX, NSA 2600, NSA 2650, NSA 3500, NSA 3600, NSA 4500, NSA 4600, NSA 5000, NSA E5500, NSA E6500, NSA E7500, NSA E8500, NSA E8510, Management, Application control & SSL-VPN logs,
SSL-VPN appliance
SMA
Sonic OS 5.8.x and above. Supports IPFIX with extensions

How to configure?

 
 
WatchGuard

Firebox Models v5.x, 6.x, 7.x, 8.x, 10.x, 11 or later
Firebox X series, x550e, x10e, x1000, x750e or later
XTM version 11.9
Firebox M Series
Firebox T Series

How to configure?

 
 
HuaweiHuawei 
 
Hillstone FirewallFirewall version : SG 6000, Firmware version 5.5 and above 
 
pfSense

PfSense 2.2, 2.3, 2.4 or later

OPNsense firewall

How to configure?

 
 
Sophos
Security Linux v7.0, v8.0
 
 
 

UTM 9.0 or later (formerly Astaro)
How to configure UTM?

 
 

XG v15,v16,v16.5,v17.0.x
How to configure XG?

 
 

Cyberoam - Cyberoam Firewall version: 9.5.4 or later
How to configure?

 
 
SecurepointSecurepoint UTM Firewalls 
 
3Com

3Com X-family Version 3.0.0.2090 or later
Earlier versions will work to a lesser extent

How to configure?

 
 
AnchivaSecure Gateway Series 200, 500, 800, 1000, 2000 or later 
 
Applied IdentityIdentiforce 
 
ARKOON Network SecurityARKOON 2.20 or later
 
 
AventailExtranet Center v3.0 or later
 
 
AWStatsMost versions 
 
Barracuda

VF250 Version 5.4.1 or later
Barracuda Email Security Gateway - Most versions
Next Generation Firewall (NGFW) - Model - F-600

 
 

Barracuda WAF (Web application firewall). Waf module: Barracuda-V660
How to configure?

 
 
BlueCoatSG Series, Proxy Server, Proxy SGOS 6.4.5.2 
 
CimcorCimTrak Web Security Edition or later
 
 
ClavisterMost versions 
 
ContentKeeperProxy server - Most versions 
 
CyberGuard

CyberGuard Firewall v4.1, 4.2, 4.3, 5.1 or later

How to configure?

 
 
D-Link

Most DFL versions

How to configure?

 
 
Digital Artsi-Filter version 10 (Proxy server) 
 
DP FirewallsDP Firewall 1000-GE or later 
 
Electronic ConsultantsIPTables Firewall 
 
F5

BIG-IP firewalls 9.x to 13.x or later

How to configure?

  
ForcePoint

Firewall version 5.5 or later (Formerly Stone Soft)

How to configure?

 
 
FreeBSDMost versions 
 
Funkwerk Enterprise CommunicationsFunkwerk UTM 
 
Global TechnologiesGnatbox (GB-1000) 3.3.0+ or later
 
 
H3C

H3C SecPath M9000-AI-E8
Version 7.1.064, Release 9001P4108
H3C SecPath F5060
Version 7.1.064, Release 9660P47
H3C SecPath F5030-6GW
Version 7.1.064, Release 9660P47
H3C SecPath F1000-AI-75
Version 7.1.064, Release 8860P50

 
IngateIngate firewall: 1200, 1400, 1800/1880 or later
 
 
InktomiTraffic Server, C-Class and E-Class
 
 
IPCop
(End of Life)

IPCop Firewall Version 1.4.17, 1.4.18 or later

How to configure?

 
 
IvantiPulse Secure 9.1R16 
 
KerioWinroute 
 
Lenovo Security TechnologiesLeadSec 
 
LucentSecurity Management Server V. 6.0.471 or later
 
 
MGuard8.2.2 or later
 
 
McAfee
(formerly Secure Computing)
SnapGear, SG580,
Sidewinder (uses SEF Sidewinder Export Format),
Sidewinder (S4016) Ver 8.3.2 - Firewall Enterprise
 
 
Microsoft

Microsoft ISA (Firewall, Web Proxy, Packet Filter, Server 2006 VPN) or later
Server 2000 and 2004 or later,
W3C Log Format,
Threat Management Gateway (TMG)

How to configure?

 
 
MikroTik

Firewall all versions

How to configure?

  
NetAppNetCache 
 
NetASQF10, F100 v3.x, v8 or later
 
 
NetFilterLinux Iptables 
 
NetopiaS9500 Security Appliance v1.6 or later
 
 
Network-1CyberwallPLUS-WS, CyberwallPLUS-SV or later
 
 
Opzoon

Firewall ISOS v5 or later

Note: Firewall Analyzer supports only Admin Reports under Reports > Firewall Reports and Audit Logs report under Compliance tab.

 
 
Recourse TechnologiesManHunt v1.2, 1.21 or later
 
 
RuijieFirewall 
 
Snort

Most versions

 
 
Squid Project

Squid Internet Object Cache v1.1, 2.x or later

How to configure?

 
 
St. Bernard SoftwareiPrism 4.1, Proxy server 7110
 
 
Stormshield

Most versions

 
 
Sun MicrosystemsSunScreen Firewall v3.1 or later
 
 
SymantecEnd Point Protection device 14 or later 
 
Trend MicroProxy Server 
 
VarioSecureMost versions 
 
VMwareNSX Edge Friewall 6.4 or later 
 
VyattaVyatta Firewall - IPv4 Firewall, IPv6 Firewall, Zone-Based FirewallVMware 
 
WebMarshal

Proxy server - Most versions

How to configure?

 
 
WinGate

Proxy server - Most versions

 
 
Zyxel

ZLD 4.25 or later

 
 

 

If the Firewall device logs contains the time zone information, Firewall Analyzer processes it and normalizes it to time zone of Firewall Analyzer Server

 

Firewall Rule Management Support

Firewall Analyzer provides the rule management reports for the given list of firewalls.

 

Firewall Rule Management Report Support

DevicesModeRule Management
OverviewOptimizationCleanupReorderImpactTrackingExpiry NotificationRisk
Cisco ASACLI        
File        
Cisco PIXCLI        
File        
Cisco FirePOWERCLI        
API        
File        
Cisco MERAKIAPI        
Cisco RouterCLI        
File        
FortiGateCLI        
API        
File        
WatchGuardCLI        
File        
SonicWallAPI        
CLI        
File        
Check PointAPI        
CLI        
PaloAltoAPI        
CLI        
File        
Juniper SRXAPI        
CLI        
File        
Juniper NetScreenCLI        
File        
HuaweiCLI        
File        
pfSenseCLI        
File        
Sophos XGAPI        
Sophos UTMAPI        
StormshieldCLI        
VyattaCLI        
File        
HillstoneCLI        
File        
BarracudaCLI        
File        
F5 FirewallCLI        
File        
MGuardCLI        
File        
iptablesCLI        
File        
MikroTikCLI        
File        
ForcepointFile        
Clavister NetWallCLI        
File        
Clavister NetShieldCLI        
File        
ZYWALLCLI        
File        

 

Firewall Compliance Management Report Support

 

DevicesModeCompliance
Change ManagementStandards *Security AuditConfig Backup
Cisco ASACLI    
File    
Cisco PIXCLI    
File    
Cisco FirePOWERCLI    
API    
File    
Cisco MERAKIAPI    
Cisco RouterCLI    
File    
FortiGateCLI    
API    
File    
WatchGuardCLI    
File    
SonicWallAPI    
CLI    
File    
Check PointAPI    
CLI    
File    
PaloAltoAPI    
CLI    
File    
Juniper SRXAPI    
CLI    
File    
Juniper NetScreenCLI    
File    
HuaweiCLI    
File    
pfSenseCLI    
File    
Sophos XGAPI    
Sophos UTMAPI    
StormshieldCLI    
VyattaCLI    
File    
HillstoneCLI    
File    
BarracudaCLI    
File    
F5 FirewallCLI    
File    
MGuardCLI    
File    
iptablesCLI    
File    
MikrotikCLI    
File    
ForcepointFile    
Clavister NetWallCLI    
File    
Clavister NetShieldCLI    
File    
ZYWALLCLI    
File    

 Note: Firewall Analyzer supports API auth-token based rule management reports for Fortigate, Paloalto, and Sophos UTM firewalls.

 

Standards Compliance Reports Supported * - The following regulatory compliance reports are displayed in Pie chart graph of % complied and the details are listed in the table

 

Firewall Rule Administration Support

Firewall Analyzer supports the rule administration for the given list of firewalls.

DevicesModeAdministration
Network ObjectService ObjectSecurity Rules
AddEditDeleteAddEditDeleteAddEditDelete
PaloAltoCLI         
API         
Check PointCLI         
API         
FortiGateCLI         
API         
Cisco ASACLI         
Cisco FirePOWERAPI         
Juniper SRXCLI         
Sophos UTMAPI         
Sophos XGAPI         
VyattaAPI         

 

Application Report Support

Application report supported for the following devices:

  1. Check Point
  2. Cisco FirePower
  3. FortiGate
  4. Juniper SRX
  5. Palo Alto
  6. Sonicwall
  7. Sophos XG
  8. WatchGuard

VPN Report Support

VPN report supported for the following devices:

  1. FortiGate Firewall
  2. Cisco ASA, Cisco PIX, Cisco Firepower, Cisco VPN Concentrator and Cisco Meraki
  3. Checkpoint Firewall
  4. Paloalto Firewall
  5. Juniper SRX Firewall
  6. Sonicwall Firewall and Sonicwall SSLVPN appliance
  7. Huawei Firewall
  8. Pfsense Firewall
  9. Netscreen Firewall
  10. Sophos UTM Firewall
  11. Sophos XG Firewall
  12. Watchguard Firewall
  13. Barracuda Firewall
  14. Clavister Firewall
  15. KerioControl Firewall
  16. 3COM Firewall

NetFlow Log Support

VendorNetFlow logs supportedSecurity reportTraffic report
CiscoCisco ASA version9 NetFlow logs 
 
SonicwallSonicwall IPFix Netflow logs
 
 

Want rule, log reports of your device to get added?

Thank you for your feedback!

Was this content helpful?

We are sorry. Help us improve this page.

How can we improve this page?
Do you need assistance with this topic?
By clicking "Submit", you agree to processing of personal data according to the Privacy Policy.
A single platter for comprehensive Network Security Device Management
Quick LinksNetwork Bandwidth ReportsNetwork Security & Device MgmtLog ManagementCompliance &amp MSSP Features