Firewall Analyzer is compatible with the following firewall devices.
Click on the device name (if applicable) to see instructions on configuring firewalls for reporting and sending logs to the Firewall Analyzer.
Firewall Analyzer provides detailed reports on network traffic and security insights derived from Syslog data across various firewall vendors. Click here to learn more about the supported firewall vendors and available report types.
Company | Firewall - Version | WELF Certified | Other Log Format |
---|---|---|---|
Check Point |
Log import from all versions and |
||
Palo Alto |
Palo Alto Firewalls PA 5000 series, |
||
Cisco Systems |
Cisco Pix Secure Firewall v 6.x, 7.x, |
||
Cisco FirePower (v 6.3.0 or later), 2100 series and 4100 series |
|||
Cisco IronPort Proxy server. Cisco IronPort Proxy server - Web Security Appliances |
|||
Cisco Meraki Firewall |
|||
Cisco FirePower Management Center (FMC) Note: Firewall Analyzer supports only Admin Reports under Reports > Firewall Reports and Audit Logs report under Compliance tab. |
|||
Fortinet |
FortiGate family, |
||
Juniper Networks |
Juniper SRX series
SRX100, SRX210, SRX220, SRX240, SRX 550, SRX650, SRX1400, SRX1500, SRX3400, SRX3600, SRX 4100, SRX5600, SRX5800
SRX - Security and Application logs,
VDOM support IDP,
SSL VPN series 4500 & 6500, New Format Logs
ISG series
2000
6360,
8350 series
|
||
NetScreen series, NetScreen most versions of Web Filter & Spam Modules |
|||
SonicWALL |
SOHO3, |
||
WatchGuard |
Firebox Models v5.x, 6.x, 7.x, 8.x, 10.x, 11 or later |
||
Huawei | Huawei | ||
Hillstone Firewall | Firewall version : SG 6000, Firmware version 5.5 and above | ||
pfSense |
PfSense 2.2, 2.3, 2.4 or later OPNsense firewall |
||
Sophos |
Security Linux v7.0, v8.0
|
||
UTM 9.0 or later (formerly Astaro) |
|||
XG v15,v16,v16.5,v17.0.x |
|||
Cyberoam - Cyberoam Firewall version: 9.5.4 or later |
|||
Securepoint | Securepoint UTM Firewalls | ||
3Com |
3Com X-family Version 3.0.0.2090 or later |
||
Anchiva | Secure Gateway Series 200, 500, 800, 1000, 2000 or later | ||
Applied Identity | Identiforce | ||
ARKOON Network Security | ARKOON 2.20 or later | ||
Aventail | Extranet Center v3.0 or later | ||
AWStats | Most versions | ||
Barracuda |
VF250 Version 5.4.1 or later |
||
Barracuda WAF (Web application firewall). Waf module: Barracuda-V660 |
|||
BlueCoat | SG Series, Proxy Server, Proxy SGOS 6.4.5.2 | ||
Cimcor | CimTrak Web Security Edition or later | ||
Clavister | Most versions | ||
ContentKeeper | Proxy server - Most versions | ||
CyberGuard |
CyberGuard Firewall v4.1, 4.2, 4.3, 5.1 or later |
||
D-Link |
Most DFL versions |
||
Digital Arts | i-Filter version 10 (Proxy server) | ||
DP Firewalls | DP Firewall 1000-GE or later | ||
Electronic Consultants | IPTables Firewall | ||
F5 |
BIG-IP firewalls 9.x to 13.x or later |
||
ForcePoint |
Firewall version 5.5 or later (Formerly Stone Soft) |
||
FreeBSD | Most versions | ||
Funkwerk Enterprise Communications | Funkwerk UTM | ||
Global Technologies | Gnatbox (GB-1000) 3.3.0+ or later | ||
Ingate | Ingate firewall: 1200, 1400, 1800/1880 or later | ||
Inktomi | Traffic Server, C-Class and E-Class | ||
IPCop (End of Life) |
IPCop Firewall Version 1.4.17, 1.4.18 or later |
||
Ivanti | Pulse Secure 9.1R16 | ||
Kerio | Winroute | ||
Lenovo Security Technologies | LeadSec | ||
Lucent | Security Management Server V. 6.0.471 or later | ||
McAfee (formerly Secure Computing) |
SnapGear, SG580,
Sidewinder (uses SEF Sidewinder Export Format),
Sidewinder (S4016) Ver 8.3.2 - Firewall Enterprise
|
||
Microsoft |
Microsoft ISA (Firewall, Web Proxy, Packet Filter, Server 2006 VPN) or later |
||
MikroTik |
Firewall all versions |
||
NetApp | NetCache | ||
NetASQ | F10, F100 v3.x, v8 or later | ||
NetFilter | Linux Iptables | ||
Netopia | S9500 Security Appliance v1.6 or later | ||
Network-1 | CyberwallPLUS-WS, CyberwallPLUS-SV or later | ||
Opzoon |
Firewall ISOS v5 or later Note: Firewall Analyzer supports only Admin Reports under Reports > Firewall Reports and Audit Logs report under Compliance tab. |
||
Recourse Technologies | ManHunt v1.2, 1.21 or later | ||
Ruijie | Firewall | ||
Snort |
Most versions |
||
Squid Project |
Squid Internet Object Cache v1.1, 2.x or later |
||
St. Bernard Software | iPrism 4.1, Proxy server 7110 | ||
Stormshield |
Most versions |
||
Sun Microsystems | SunScreen Firewall v3.1 or later | ||
Symantec | End Point Protection device 14 or later | ||
Trend Micro | Proxy Server | ||
VarioSecure | Most versions | ||
VMware | NSX Edge Friewall 6.4 or later | ||
Vyatta | Vyatta Firewall - IPv4 Firewall, IPv6 Firewall, Zone-Based FirewallVMware | ||
WebMarshal |
Proxy server - Most versions |
||
WinGate |
Proxy server - Most versions |
||
Zyxel |
ZLD 4.25 or later |
If the Firewall device logs contains the time zone information, Firewall Analyzer processes it and normalizes it to time zone of Firewall Analyzer Server |
Firewall Analyzer provides the rule management reports for the given list of firewalls.
Devices | Mode | Rule Management | |||||||
---|---|---|---|---|---|---|---|---|---|
Overview | Optimization | Cleanup | Reorder | Impact | Comparison | Expiry Notification | Risk | ||
Cisco ASA | CLI | ||||||||
File | |||||||||
Cisco PIX | CLI | ||||||||
File | |||||||||
Cisco FirePOWER | CLI | ||||||||
API | |||||||||
File | |||||||||
Cisco MERAKI | API | ||||||||
Cisco Router | CLI | ||||||||
File | |||||||||
FortiGate | CLI | ||||||||
API | |||||||||
File | |||||||||
WatchGuard | CLI | ||||||||
File | |||||||||
SonicWall | API | ||||||||
CLI | |||||||||
File | |||||||||
Check Point | API | ||||||||
CLI | |||||||||
PaloAlto | API | ||||||||
CLI | |||||||||
File | |||||||||
Juniper SRX | API | ||||||||
CLI | |||||||||
File | |||||||||
Juniper NetScreen | CLI | ||||||||
File | |||||||||
Huawei | CLI | ||||||||
File | |||||||||
pfSense | CLI | ||||||||
File | |||||||||
Sophos XG | API | ||||||||
Sophos UTM | API | ||||||||
Stormshield | CLI | ||||||||
Vyatta | CLI | ||||||||
File | |||||||||
Hillstone | CLI | ||||||||
File | |||||||||
iptables | CLI | ||||||||
File | |||||||||
MikroTik | CLI | ||||||||
File | |||||||||
Forcepoint | File | ||||||||
Clavister NetWall | CLI | ||||||||
File | |||||||||
Clavister NetShield | CLI | ||||||||
File |
Devices | Mode | Compliance | |||
---|---|---|---|---|---|
Change Management | Standards * | Security Audit | Config Backup | ||
Cisco ASA | CLI | ||||
File | |||||
Cisco PIX | CLI | ||||
File | |||||
Cisco FirePOWER | CLI | ||||
API | |||||
File | |||||
Cisco MERAKI | API | ||||
Cisco Router | CLI | ||||
File | |||||
FortiGate | CLI | ||||
API | |||||
File | |||||
WatchGuard | CLI | ||||
File | |||||
SonicWall | API | ||||
CLI | |||||
File | |||||
Check Point | API | ||||
CLI | |||||
File | |||||
PaloAlto | API | ||||
CLI | |||||
File | |||||
Juniper SRX | API | ||||
CLI | |||||
File | |||||
Juniper NetScreen | CLI | ||||
File | |||||
Huawei | CLI | ||||
File | |||||
pfSense | CLI | ||||
File | |||||
Sophos XG | API | ||||
Sophos UTM | API | ||||
Stormshield | CLI | ||||
Vyatta | CLI | ||||
File | |||||
Hillstone | CLI | ||||
File | |||||
iptables | CLI | ||||
File | |||||
Mikrotik | CLI | ||||
File | |||||
Forcepoint | File | ||||
Clavister NetWall | CLI | ||||
File | |||||
Clavister NetShield | CLI | ||||
File |
Note: Firewall Analyzer supports API auth-token based rule management reports for Fortigate, Paloalto, and Sophos UTM firewalls.
Standards Compliance Reports Supported * - The following regulatory compliance reports are displayed in Pie chart graph of % complied and the details are listed in the table
Firewall Analyzer supports the rule administration for the given list of firewalls.
Devices | Mode | Administration | ||||||||
---|---|---|---|---|---|---|---|---|---|---|
Network Object | Service Object | Security Rules | ||||||||
Add | Edit | Delete | Add | Edit | Delete | Add | Edit | Delete | ||
PaloAlto | CLI | |||||||||
API | ||||||||||
Check Point | CLI | |||||||||
API | ||||||||||
FortiGate | CLI | |||||||||
API | ||||||||||
Cisco ASA | CLI | |||||||||
Cisco FirePOWER | API | |||||||||
Juniper SRX | CLI | |||||||||
Sophos UTM | API | |||||||||
Sophos XG | API | |||||||||
Vyatta | API |
Rule Risk Analysis report supported for the following devices:
Application report supported for the following devices:
VPN report supported for the following devices:
Vendor | NetFlow logs supported | Security report | Traffic report |
---|---|---|---|
Cisco | Cisco ASA version9 NetFlow logs | ||
Sonicwall | Sonicwall IPFix Netflow logs |