Home Page | Skip to Navigation | Skip to Content | Skip to Search | Skip to Footer

OPSEC Partners

AdventNet

AdventNet

Product Version Certified: ManageEngine Firewall Analyzer 4.0 tested with Check Point NGX R62

Certified for use with: Check Point Next Generation with Application Intelligence

Product Description: ManageEngine Firewall Analyzer is a firewall log analysis tool that collects, correlates and reports on enterprise-wide, vendor-neutral firewalls, VPN’s, and proxy servers which will help to track intrusion detection, manage user access, audit traffic, detect anomalies, and also helps you to manage your network bandwidth efficiently.continuity.

Company Description: Enabling Management Your Way: Founded in 1996, AdventNet is a software company with a broad portfolio of elegantly designed, affordable products and web services. AdventNet offerings span a spectrum of vertical areas, including network & systems management (ManageEngine.com), security (SecureCentral.com), collaboration, CRM & office productivity applications (Zoho.com), database search and migration (SQLOne.com), and test automation tools (QEngine.com).

AdventNet and its global network of partners provide solutions to multiple market segments including: OEM’s, global enterprises, government, education, small and medium-sized businesses and to a growing base of management service providers.

Key Features and Benefits

ManageEngine Firewall Analyzer is a browser-based firewall/VPN/proxy server reporting solution that uses a built-in syslog server to store, analyze, report, and archive on these logs. Firewall Analyzer provides daily, weekly, monthly, and yearly reports on firewall traffic, security breaches, and more. This helps network administrators and MSSP’s to proactively secure networks before security threats arise, avoid network abuses, manage bandwidth requirements, monitor web site visits, and ensure appropriate usage of networks by employees.

Firewall Analyzer analyzes your firewall, vpn, and proxy server logs and answers questions like the following:

  • Who are the top Web surfers in the company, and what web sites are they visiting?
  • How many users inside the firewall are trying to access web sites with inappropriate content?
  • How much network activity originates on each side of the firewall?
  • Are we experiencing hack attempts? Where are they originating?
  • Which servers receive the most hits?
  • How much bandwidth is consumed across each firewall?

OPSEC Integration

Firewall Analyzer gets Logs from Check Point firewall through LEA both in authenticated and unauthenticated mode.

Diagram

This integration offers customers with a centralized web-based user interface to monitor the firewall activities across all their firewalls and help them to proactively secure networks before security threats arise, to avoid network abuses, manage bandwidth requirements, monitor web site visits, and ensure appropriate usage of networks by employees. Also using Firewall Analyzer a variety of useful reports can be generated (as listed below):

  • Traffic Reports (Inbound/Outbound reports with respect to firewall, Sent/Received reports with respect to the originating source, Intranet/Internet reports based on LAN settings)
  • VPN Reports (Users who are using VPN, transactions that are part of VPN tunnels)
  • Rules Reports (Highly used rules)
  • Security Reports (Users who are denied/rejected more, Events with high criticality)
  • Attack Reports (Attacks identified by Check Point firewall and identifying Top Attackers etc)
  • Live Reports (getting correct duration in the Check Point firewall logs)
  • User based reports (getting user-id in the logs)
  • URL based reports (getting resource value in the logs)
  • And many more…

Additional Information