Installation Guide - AWS - Firewall Analyzer


    How to install Firewall Analyzer in AWS

    Installing Firewall Analyzer in AWS helps in ensuring world class firewall management for your network while eliminating the need for a physical server for monitoring.

    You can use Firewall Analyzer in AWS using one of the 2 methods:

    Running Firewall Analyzer from AMI

    Purchase Firewall Analyzer AMI from here. 

    • While purchasing, you will be prompted to select the EC2 instance of your choice based on certain preconfiguration.
    • Select the required instance and launch AMI using admin as username and instanceid as password.

    Note: When you access the Firewall Analyzer using the public IP/DNS address, note that the "Public IP/DNS address" changes when the instance is stopped/terminated. As in a network, devices need to forward syslogs & traps to the Firewall Analyzer server, the public IP has to be updated in the end devices every time it changes. Hence it is recommended to use an elastic IP address for seamless monitoring . For more details on Elastic IP address click here.

    Running Firewall Analyzer from EC2 instance

    Pre-requisites 

    Before installing Firewall Analyzer at AWS, ensure that you meet the following pre-requisites

    1. Say if you are planning to manage up to 250 devices using Firewall Analyzer, we recommend you to have the following instance configurations
      • EC2 instance type m4.xlarge or above
      • OS - Windows 10/8/7 or Windows server 2008 or above ( upto 2019 supported ).
      • 20 GB memory space ( minimum )
    1. Note: The above specified are the minimum requirements. You may have to change the configurations according to the number of devices you are monitoring and additional integrations / modules ( such as firewall, IP address management etc ). To know more about creating instance click here.
    2. Ensure that the instance's Public IP/DNS is not blocked by any firewall and is accessible to all devices in your network.
    3. Ensure that the required security ports are available for use.

    Steps to install and run amazon from EC2 instance

    1. Remotely connect to your EC2 instance
    2. In that instance, open your web browser
    3. Download and install Firewall Analyzer. 
    4. Login to Firewall Analyzer using username as admin and password as admin.

    Important Note: 
    Ensure that the following ports in your Firewall Analyzer instance are not blocked for proper functioning of Firewall Analyzer and its add-ons ( this step is a must for running Firewall Analyzer from AMI as well as for running Firewall Analyzer from an EC2 instance):

    Port

    Protocol 

    Port Type 

    Usage 

    Remarks 

    1514 UDP Static (Syslog) Firewall log receiver port Firewall syslog receiver port can be changed via Web Client.
    8060 TCP Static (Web Server) Web server port Can be configured using ChangeWebServerPort.bat file.
    3389 TCP Static    
    4118 TCP Static    
    9990 TCP Static    
    1433 TCP Static (MS SQL) Database port Can be changed in conf/database_params.conf file/ dbconfiguration.bat file.
    161 TCP Static (SNMP) SNMP port  
    69 TCP Static    
    22 TCP Static SSH port  
    13306 TCP Static (PostgreSQL) Database port Can be changed in conf/database_params.conf file.