Firewall Analyzer is compatible with the following firewall devices.

Click on the device name (if applicable) to see instructions on configuring firewalls for reporting and sending logs to the Firewall Analyzer.

Firewall Analyzer provides detailed reports on network traffic and security insights derived from Syslog data across various firewall vendors. Click here to learn more about the supported firewall vendors and available report types.

 

Firewall Analyzer Compatible Firewalls

Company Firewall - Version WELF Certified Other Log Format
Check Point

Log import from all versions and
LEA support for R54 and above
VSX Firewalls - Virtual Edition supported
Log Exporter support for versions R77.30, R80.10, R80.20 and R80.30

How to configure?

 
 
Palo Alto

Palo Alto Firewalls PA 5000 series,
PANOS 4.1.0 or later
supports VSYS
PA-5260, PA 5220, PA-5060, PA-5050, PA-3020, PA 850, PA-220, M-100, VM series

How to configure?

 
 
Cisco Systems

Cisco Pix Secure Firewall v 6.x, 7.x,
Cisco ASA - Virtual Contexts supported
Cisco IOS 3005, 1900, 2911, 3925
Cisco FWSM - Virtual Contexts supported
Cisco VPN Concentrator
Cisco CSC-SSM Module v6.3.x or later
Cisco SSL WebVPN or SVC VPN
Cisco Botnet module
Cisco FireSight module

How to configure?

How to configure with ASDM?

 
 

Cisco FirePower (v 6.3.0 or later), 2100 series and 4100 series

How to configure?

 
 

Cisco IronPort Proxy server.

Cisco IronPort Proxy server - Web Security Appliances

How to configure?

 
 

Cisco Meraki Firewall

How to configure?

 
 

Cisco FirePower Management Center (FMC)

Note: Firewall Analyzer supports only Admin Reports under Reports > Firewall Reports and Audit Logs report under Compliance tab.

 
 
Fortinet

FortiGate family,
SSL VPN (v 300A, v 310B or later)
Webfilter,
DLP,
IPS modules,
IPSec
VDOMs supported

How to configure?

 
 

 
Juniper Networks
Juniper SRX series
SRX100, SRX210, SRX220, SRX240, SRX 550, SRX650, SRX1400, SRX1500, SRX3400, SRX3600, SRX 4100, SRX5600, SRX5800
SRX - Security and Application logs,
VDOM support
IDP,
SSL VPN series
4500 & 6500, New Format Logs
ISG series
2000
6360,
8350 series
 
 
 

NetScreen series, NetScreen most versions of Web Filter & Spam Modules

How to configure?

 
 
SonicWALL

SOHO3,
SOHO TZW, TELE3 SP/TELE3 Spi,
PRO 230, 2040, 3060, 4060, 5060,
TZ 100/ TZ 100w, TZ 170, TZ 170 Wireless, TZ 170 SP Wireless, TZ 200/ TZ 200w, TZ 210/ TZ 210w, TZ 300, TZ 400
NSA 240, NSA 2400, NSA 2400MX, NSA 2600, NSA 2650, NSA 3500, NSA 3600, NSA 4500, NSA 4600, NSA 5000, NSA E5500, NSA E6500, NSA E7500, NSA E8500, NSA E8510, Management, Application control & SSL-VPN logs,
SSL-VPN appliance
SMA
Sonic OS 5.8.x and above. Supports IPFIX with extensions

How to configure?

 
 
WatchGuard

Firebox Models v5.x, 6.x, 7.x, 8.x, 10.x, 11 or later
Firebox X series, x550e, x10e, x1000, x750e or later
XTM version 11.9
Firebox M Series
Firebox T Series

How to configure?

 
 
Huawei Huawei  
 
Hillstone Firewall Firewall version : SG 6000, Firmware version 5.5 and above  
 
pfSense

PfSense 2.2, 2.3, 2.4 or later

OPNsense firewall

How to configure?

 
 
Sophos
Security Linux v7.0, v8.0
 
 
 

UTM 9.0 or later (formerly Astaro)
How to configure UTM?

 
 

XG v15,v16,v16.5,v17.0.x
How to configure XG?

 
 

Cyberoam - Cyberoam Firewall version: 9.5.4 or later
How to configure?

 
 
Securepoint Securepoint UTM Firewalls  
 
3Com

3Com X-family Version 3.0.0.2090 or later
Earlier versions will work to a lesser extent

How to configure?

 
 
Anchiva Secure Gateway Series 200, 500, 800, 1000, 2000 or later  
 
Applied Identity Identiforce  
 
ARKOON Network Security ARKOON 2.20 or later
 
 
Aventail Extranet Center v3.0 or later
 
 
AWStats Most versions  
 
Barracuda

VF250 Version 5.4.1 or later
Barracuda Email Security Gateway - Most versions
Next Generation Firewall (NGFW) - Model - F-600

 
 

Barracuda WAF (Web application firewall). Waf module: Barracuda-V660
How to configure?

 
 
BlueCoat SG Series, Proxy Server, Proxy SGOS 6.4.5.2  
 
Cimcor CimTrak Web Security Edition or later
 
 
Clavister Most versions  
 
ContentKeeper Proxy server - Most versions  
 
CyberGuard

CyberGuard Firewall v4.1, 4.2, 4.3, 5.1 or later

How to configure?

 
 
D-Link

Most DFL versions

How to configure?

 
 
Digital Arts i-Filter version 10 (Proxy server)  
 
DP Firewalls DP Firewall 1000-GE or later  
 
Electronic Consultants IPTables Firewall  
 
F5

BIG-IP firewalls 9.x to 13.x or later

How to configure?

   
ForcePoint

Firewall version 5.5 or later (Formerly Stone Soft)

How to configure?

 
 
FreeBSD Most versions  
 
Funkwerk Enterprise Communications Funkwerk UTM  
 
Global Technologies Gnatbox (GB-1000) 3.3.0+ or later
 
 
Ingate Ingate firewall: 1200, 1400, 1800/1880 or later
 
 
Inktomi Traffic Server, C-Class and E-Class
 
 
IPCop
(End of Life)

IPCop Firewall Version 1.4.17, 1.4.18 or later

How to configure?

 
 
Ivanti Pulse Secure 9.1R16  
 
Kerio Winroute  
 
Lenovo Security Technologies LeadSec  
 
Lucent Security Management Server V. 6.0.471 or later
 
 
McAfee
(formerly Secure Computing)
SnapGear, SG580,
Sidewinder (uses SEF Sidewinder Export Format),
Sidewinder (S4016) Ver 8.3.2 - Firewall Enterprise
 
 
Microsoft

Microsoft ISA (Firewall, Web Proxy, Packet Filter, Server 2006 VPN) or later
Server 2000 and 2004 or later,
W3C Log Format,
Threat Management Gateway (TMG)

How to configure?

 
 
MikroTik

Firewall all versions

How to configure?

   
NetApp NetCache  
 
NetASQ F10, F100 v3.x, v8 or later
 
 
NetFilter Linux Iptables  
 
Netopia S9500 Security Appliance v1.6 or later
 
 
Network-1 CyberwallPLUS-WS, CyberwallPLUS-SV or later
 
 
Opzoon

Firewall ISOS v5 or later

Note: Firewall Analyzer supports only Admin Reports under Reports > Firewall Reports and Audit Logs report under Compliance tab.

 
 
Recourse Technologies ManHunt v1.2, 1.21 or later
 
 
Ruijie Firewall  
 
Snort

Most versions

 
 
Squid Project

Squid Internet Object Cache v1.1, 2.x or later

How to configure?

 
 
St. Bernard Software iPrism 4.1, Proxy server 7110
 
 
Stormshield

Most versions

 
 
Sun Microsystems SunScreen Firewall v3.1 or later
 
 
Symantec End Point Protection device 14 or later  
 
Trend Micro Proxy Server  
 
VarioSecure Most versions  
 
VMware NSX Edge Friewall 6.4 or later  
 
Vyatta Vyatta Firewall - IPv4 Firewall, IPv6 Firewall, Zone-Based FirewallVMware  
 
WebMarshal

Proxy server - Most versions

How to configure?

 
 
WinGate

Proxy server - Most versions

 
 
Zyxel

ZLD 4.25 or later

 
 

 

If the Firewall device logs contains the time zone information, Firewall Analyzer processes it and normalizes it to time zone of Firewall Analyzer Server

 

Firewall Rule Management Support

Firewall Analyzer provides the rule management reports for the given list of firewalls.

 

Firewall Rule Management Report Support

Devices Mode Rule Management
Overview Optimization Cleanup Reorder Impact Comparison Expiry Notification Risk
Cisco ASA CLI                
File                
Cisco PIX CLI                
File                
Cisco FirePOWER CLI                
API                
File                
Cisco MERAKI API                
Cisco Router CLI                
File                
FortiGate CLI                
API                
File                
WatchGuard CLI                
File                
SonicWall API                
CLI                
File                
Check Point API                
CLI                
PaloAlto API                
CLI                
File                
Juniper SRX API                
CLI                
File                
Juniper NetScreen CLI                
File                
Huawei CLI                
File                
pfSense CLI                
File                
Sophos XG API                
Sophos UTM API                
Stormshield CLI                
Vyatta CLI                
File                
Hillstone CLI                
File                
iptables CLI                
File                
MikroTik CLI                
File                
Forcepoint File                
Clavister NetWall CLI                
File                
Clavister NetShield CLI                
File                

 

Firewall Compliance Management Report Support

 

Devices Mode Compliance
Change Management Standards * Security Audit Config Backup
Cisco ASA CLI        
File        
Cisco PIX CLI        
File        
Cisco FirePOWER CLI        
API        
File        
Cisco MERAKI API        
Cisco Router CLI        
File        
FortiGate CLI        
API        
File        
WatchGuard CLI        
File        
SonicWall API        
CLI        
File        
Check Point API        
CLI        
File        
PaloAlto API        
CLI        
File        
Juniper SRX API        
CLI        
File        
Juniper NetScreen CLI        
File        
Huawei CLI        
File        
pfSense CLI        
File        
Sophos XG API        
Sophos UTM API        
Stormshield CLI        
Vyatta CLI        
File        
Hillstone CLI        
File        
iptables CLI        
File        
Mikrotik CLI        
File        
Forcepoint File        
Clavister NetWall CLI        
File        
Clavister NetShield CLI        
File        

 Note: Firewall Analyzer supports API auth-token based rule management reports for Fortigate, Paloalto, and Sophos UTM firewalls.

 

Standards Compliance Reports Supported * - The following regulatory compliance reports are displayed in Pie chart graph of % complied and the details are listed in the table

 

Firewall Rule Administration Support

Firewall Analyzer supports the rule administration for the given list of firewalls.

Devices Mode Administration
Network Object Service Object Security Rules
Add Edit Delete Add Edit Delete Add Edit Delete
PaloAlto CLI                  
API                  
Check Point CLI                  
API                  
FortiGate CLI                  
API                  
Cisco ASA CLI                  
Cisco FirePOWER API                  
Juniper SRX CLI                  
Sophos UTM API                  
Sophos XG API                  
Vyatta API                  

 

Firewall Rule Risk Analysis Support

Rule Risk Analysis report supported for the following devices:

  • FortiGate
  • PaloAlto
  • Cisco ASA
  • Check Point
  • Cisco FirePower
  • FortiGate
  • Juniper SRX
  • Palo Alto
  • Sonicwall
  • Sophos XG
  • WatchGuard
  • Cisco ASA
  • Cisco MERAKI
  • Cisco FirePOWER
  • Cisco PIX
  • Juniper NetScreen
  • Huawei
  • pfSense
  • Sophos UTM
  • Stormshield
  • Vyatta
  • Hillstone
  • iptables
  • MikroTik
  • Forecepoint
  • Clavister NetWall
  • Clavister NetShield

Application Report Support

Application report supported for the following devices:

  1. Check Point
  2. Cisco FirePower
  3. FortiGate
  4. Juniper SRX
  5. Palo Alto
  6. Sonicwall
  7. Sophos XG
  8. WatchGuard

VPN Report Support

VPN report supported for the following devices:

  1. FortiGate Firewall
  2. Cisco ASA, Cisco PIX, Cisco Firepower, Cisco VPN Concentrator and Cisco Meraki
  3. Checkpoint Firewall
  4. Paloalto Firewall
  5. Juniper SRX Firewall
  6. Sonicwall Firewall and Sonicwall SSLVPN appliance
  7. Huawei Firewall
  8. Pfsense Firewall
  9. Netscreen Firewall
  10. Sophos UTM Firewall
  11. Sophos XG Firewall
  12. Watchguard Firewall
  13. Barracuda Firewall
  14. Clavister Firewall
  15. KerioControl Firewall
  16. 3COM Firewall

NetFlow Log Support

Vendor NetFlow logs supported Security report Traffic report
Cisco Cisco ASA version9 NetFlow logs  
 
Sonicwall Sonicwall IPFix Netflow logs
 
 

Want rule, log reports of your device to get added?

 

A single platter for comprehensive Network Security Device Management