Empower Your Network Security with Precision: ManageEngine Firewall Analyzer
In the fast-paced realm of IT, safeguarding your network is not just a necessity; it's a strategic imperative. Introducing ManageEngine Firewall Analyzer, the ultimate solution for real-time monitoring and analysis of your firewall logs. Designed for Canadian IT managers, IT directors, CIOs, and network administrators, this tool empowers you with unmatched oversight and control over your network security.
Facing the Firewall Challenge: The Need for Clarity and Control
In today's digital landscape, the role of network security is paramount. With increasing threats and complexities, IT professionals face significant challenges:
The ManageEngine Firewall Analyzer Edge
ManageEngine Firewall Analyzer stands apart as a comprehensive, real-time firewall log analyzer and reporting software. Here's how it elevates your network security management:
Trusted Globally
Join the ranks of global organizations who trust ManageEngine Firewall Analyzer for their network security needs. Empower your team with the tools used by industry leaders.
Why Choose ManageEngine Firewall Analyzer?
Take the Next Step in Network Security
- Free 30-Day Trial: Experience the capabilities of ManageEngine Firewall Analyzer. Discover how it transforms your network security management.
- Request a Demo: Get a personalized walkthrough of the features and benefits, tailored to your organization's needs.
- Talk to Our Experts: Have specific questions or require a customized solution? Our team is at your service.
Elevate Your Network Security Today
Don't let network threats undermine your organization. Enhance your security, optimize performance, and drive success with ManageEngine Firewall Analyzer. Join the community of IT leaders who have revolutionized their network security. Your journey to superior network security management starts here with ManageEngine Firewall Analyzer.
Benefits:
Get a Free Trial and see how Firewall Analyzer can help!
Your Role
Compliance-Conscious Carol, IT Director in Finance
Carol works in a financial institution where compliance with regulations like PCI DSS is non-negotiable. She's responsible for ensuring that all systems are compliant and secure.
Carol needs a solution that can help her:
Automate compliance reporting. With ManageEngine Firewall Analyzer's out-of-box compliance reports, she can easily meet regulatory requirements and focus on strategic tasks.
Security-Savvy Steve, Network Administrator in Education
Steve works in a large university and is responsible for the network security of thousands of students and faculty members.
Steve needs a solution that can help him:
Monitor network activities in real-time. ManageEngine Firewall Analyzer's real-time monitoring allows him to identify suspicious activities instantly, ensuring the network remains secure.
Efficient Emily, CIO in E-commerce
Emily is the CIO of a growing e-commerce company. She's always looking for ways to optimize resources and improve efficiency.
Emily needs a solution that can help her:
Streamline firewall rule management. The Firewall Rule Management feature of ManageEngine Firewall Analyzer allows her to optimize rules, making the network more efficient.
Budget-Minded Brian, IT Manager in Non-Profit
Brian works in a non-profit organization with limited resources. He needs to make every dollar count while ensuring network security.
Brian needs a solution that can help him:
Get a cost-effective yet comprehensive firewall management solution. ManageEngine Firewall Analyzer's competitive pricing and robust features offer him the best of both worlds.
Proactive Priya, Network Administrator in Government
Priya works in a government agency where national security could be at risk if the network is compromised. She needs to be proactive rather than reactive.
Priya needs a solution that can help her:
Receive instant alerts for any security anomalies. With ManageEngine Firewall Analyzer's real-time alerting, she can act swiftly to mitigate any risks.
FAQs
Q: What is ManageEngine Firewall Analyzer?
A: ManageEngine Firewall Analyzer is an agentless log analytics and configuration management software that helps network administrators manage and optimize firewall rules, ensure compliance, and enhance network security.
Q: Who is this product designed for?
A: This product is ideal for IT Managers, IT Directors, CIOs, and Network Administrators who are responsible for network security and compliance within their organizations.
Q: How does Firewall Analyzer help with compliance?
A: The software automates compliance audits with out-of-box reports for standards like PCI DSS, ISO 27001, and more, making it easier to meet regulatory requirements.
Q: Can it support multiple firewall vendors?
A: Yes, Firewall Analyzer is vendor-agnostic and supports almost all open-source and commercial network firewalls such as Check Point, Cisco, Juniper, Fortinet, and Palo Alto.
Q: What are the key features of this product?
A: Key features include Firewall Rule Management, Network Security Reporting, Real-time VPN and Proxy Server Monitoring, and Compliance Management.
Q: How does it improve network visibility?
A: Firewall Analyzer provides real-time monitoring and detailed reports on network activities, giving you unparalleled visibility into how bandwidth is being used, potential security risks, and more.
Q: Is a free trial available?
A: Yes, you can contact Optrics for a one-on-one demo or download a free 30-day trial to test the software's capabilities.
Q: What are the pricing options?
A: The software is available in three editions: Standard, Professional, and Enterprise, with pricing starting at $395 for one device. The editions differ in features and the number of devices supported.
Q: How does Firewall Analyzer ensure data security?
A: The software employs advanced security protocols to ensure that all data is encrypted and securely stored. It also provides real-time alerts for any potential security breaches.
Q: How can I get support for the product?
A: You can raise a support request directly through the ManageEngine website for technical assistance. If you do not get the level of support you need let us know and we can help you.
The system requirements mentioned below are minimum requirements for a specific log rate. The sizing requirements will vary based on the load.
Hardware requirements
Standalone edition
Firewall log rate |
Processor | Memory | Hard disk space |
Upto 500 logs/second | Intel Xeon Quad Core 3.5 GHz/ 8 threads | 8 GB | 90 GB/day for 500 logs/second |
More than 500 logs/second | Intel Xeon Quad Core 3.5 GHz/ 8 threads or higher | 16 GB |
90 GB/day for every 500 logs/second |
Distributed edition
Admin server
Processor | Memory | Hard disk space |
Intel Xeon Quad Core 3.5 GHz/ 8 threads or higher CPUs with a total combined PassMark score of 7,000 or higher |
8 GB | 100 GB |
Collector server
Firewall log rate |
Processor | Memory | Hard disk space |
Upto 500 logs/second | Intel Xeon Quad Core 3.5 GHz/ 8 threads | 8 GB | 90 GB/day for 500 logs/second |
More than 500 logs/second | Intel Xeon Quad Core 3.5 GHz/ 8 threads or higher | 16 GB |
90 GB/day for every 500 logs/second |
Note : |
|
Software requirements
The following table lists the recommended software requirements for an Firewall Analyzer installation.
Software |
Version requirements for Evaluation |
Version requirements for Production |
Windows OS | Windows 10 (or) Windows Server 2012 | Windows Server 2022/ 2019/ 2016/ 2012 R2/ 2012 |
Linux OS | Ubuntu 14 to 22.04/ CentOS 7/ Fedora 31/ Red Hat 7 to 9.1/ Opensuse 15/ Debian 10 to 11.6 | Ubuntu 14 to 22.04/ Red Hat version 7 to 9.1/ CentOS Stream 9/ CentOS Stream 8/ CentOS 7 |
Browsers | Chrome/ Firefox/ Edge | Chrome (preferred)/ Firefox/ Edge |
Note : | User Privilege : Local administrator privileges required for Firewall Analyzer installation. |
Port requirements
The following are the ports and protocols that Firewall Analyzer uses for communication.
Ports used by the application
Port | Protocol | Port Type | Usage | Remarks |
8060 | TCP | Static | Web server port | Can be configured using ChangeWebServerPort.bat file. |
22 | TCP | Static | SSH port | |
1433 | TCP | Static (MS SQL) | Database port | Can be changed in conf/database_params.conf file or dbconfiguration.bat file. |
13306 | TCP | Static (PostgreSQL) | Database port | Can be changed in conf/database_params.conf file. |
32000-32999 | Wrapper | |||
31000-31999 | JVM (to connect Wrapper) |
Ports used for monitoring
Port | Protocol | Port Type | Usage | Remarks |
1514 | UDP | Static | Syslog port (Firewall log receiver port for Firewall Analyzer) | Can be changed via web client. |
Database Requirements
The following table lists the basic requirements for your Firewall Analyzer database server.
PostgreSQL
- Standalone Edition - Bundled with the product (PostgreSQL version 14.7).
- Distributed Edition - Bundled with the product. We recommend MS SQL.
For Remote PostgreSQL, Firewall Analyzer supports PostgreSQL versions 14.7 to 14.x.
In case of failover, we recommend MS SQL.
Microsoft SQL
- Supported versions
SQL 2019 (from build 125379) | SQL 2017 | SQL 2016 | SQL 2014 | SQL 2012
-
Important Notices
- For production use 64 bit versions of SQL
- Recovery mode should be set to SIMPLE.
- SQL and Firewall Analyzer should be in the same LAN. Currently WAN based SQL installations are not supported.
-
Collation
- English with collation setting (SQL_Latin1_General_CP1_CI_AS)
- Norwegian with collation setting (Danish_Norwegian_CI_AS)
- Simplified Chinese with collation setting (Chinese_PRC_CI_AS)
- Japanese with collation setting (Japanese_CI_AS)
- German with collation setting (German_PhoneBook_CI_AS)
-
Authentication
- Mixed mode (MS SQL and Windows authentication).
-
BCP
-
The bcp.exe and bcp.rll must
be available in the Firewall Analyzer bin directory.
The BCP utility provided with Microsoft SQL Server is a command line utility that allows you to import and export large amounts of data in and out of SQL server databases quickly. The bcp.exe and bcp.rll will be available in the MSSQL installation directory. If MSSQL is in a remote machine, copy bcp.exe and bcp.rll files and paste them in the <\Firewall Analyzer\bin> directory.
-
The bcp.exe and bcp.rll must
be available in the Firewall Analyzer bin directory.
Note : | The SQL server version compliant with the SQL Native Client must be installed in the same server. |
Compare Editions
- Pricing in USD.
- Quotes in CAD also available.
Perpetual Edition Pricing
Standard
-
Network Traffic Analysis
- Bandwidth Reports
- Inbound / Outbound Traffic
- Internet / Intranet Reports
- VPN Usage & Trend
- Protocol Usage
- Firewall Rules Report
- Sites Accessed by Users
- Firewall Device Audit Report
- and More...
Professional
-
Firewall Rule Analysis
- Policy Overview
- Policy Optimization (Anomaly Detection)
- Rule Cleanup
- Rule Reorder & Recommendation
- New Rule Impact Analysis
- and more...
Enterprise Edition
- Scalable architecture
- Monitors multi-geographical locations
- Distributed central-collector architecture
- Site specific reports
- Web-client Rebranding
- Client & user specific views
- Failover/High availability (Default addon)
- + All the features of Professional Edition
- and more...