This topic deals with the following prerequisites for setting up Firewall Analyzer in your enterprise.
Firewall Analyzer requires the following ports to be free:
Port Number | Usage |
---|---|
8060 | This is the default web server port. You will access the Firewall Analyzer server from a web browser using this port number. You may change this port during installation. |
1514 |
These are the default listener ports on which Firewall Analyzer listens for incoming logs exported from devices. You can add more ports on which Firewall Analyzer can listen for incoming logs. |
13306 | This is the port used to connect to the PostgreSQL database in Firewall Analyzer |
Look up Changing Default Ports for help on changing the default ports used by Firewall Analyzer |
Apart from the System Requirements, the following setup would ensure optimal performance from Firewall Analyzer:
Changing the default PostgreSQL port:
url=jdbc:postgresql://localhost:13306/firewall?stringtype=unspecified
to
url=jdbc:postgresql://localhost:<desired port number>/firewall?stringtype=unspecified
Changing the default web server port:
<Connector acceptCount="100" connectionTimeout="20000" debug="3" disableUploadTimeout="true" enableLookups="false" maxSpareThreads="75" maxThreads="150" minSpareThreads="25" port="8500" redirectPort="8443"/>
to
<Connector acceptCount="100" connectionTimeout="20000" debug="3" disableUploadTimeout="true" enableLookups="false" maxSpareThreads="75" maxThreads="150" minSpareThreads="25" port="<desired port number>" redirectPort="8443"/>
host all all <IP address of the remote machine to be used to trouble shoot>/32 trust
after the line
host all all 127.0.0.1/32 trust
and save the file.
# TYPE DATABASE USER ADDRESS METHOD # IPv4 local connections: host all all 127.0.0.1/32 trust # IPv6 local connections: host all all ::1/128 trust to # TYPE DATABASE USER ADDRESS METHOD # IPv4 local connections: host all all 127.0.0.1/32 trust host all all <IP address of the remote machine to be used to trouble shoot>/32 trust # IPv6 local connections: host all all ::1/128 trust |