User guide
ManageEngine Firewall Analyzer :: User Guide
164
Zoho Corp.
Configuring to Fetch Firewall Configuration and
Unused Rules
In a Firewall device, there could be numerous rules/access-list defined to secure the
network from external attacks. Out of the rules/access-list configured, there could be
certain rules which would be most used and certain which are least used or never used.
Firewall Analyzer captures the most used rules in the Top Used Rules as they would be
available in the logs generated by Firewall. But, to get the Unused Rules, one needs to
configure the Firewall Analyzer to fetch the complete rules from the device. Once,
Firewall Analyzer fetches the complete rules configured in the Firewall, it can provide the
Unused Rules view.
To view Unused Firewall Rules, configure the Firewall Analyzer by following the steps
given below:
1. In the Firewall Analyzer web client, select the Settings tab.
2. In Settings screen, select the System Settings > Device Rule link. Device
Rule Info page appears.
3. On the top, there are links provided to add device info to fetch rules and to delete
the device info. The links are:
a.
Device Info
b.
Device Info
c.
Profile
d.
Assign Profile
e.
List Profile
f. Change Management Configurations
Add Device Info
4. Click the Add Device Info link to add the device information to fetch the rules
and configurations using Telnet or SSH. The Enter Device Details screen opens
up.
5. In the Enter Device Details screen, select the Firewall device in the Select
Device drop down list.
6. In the Fetch Rules/Config section, there will be two options to fetch rules and
configurations
a. From Device
b. From File
Select the option as per your requirement.
Fetching the rules directly from the device is supported for the following devices
only:
• Cisco
• Fortigate
• Netscreen
For the rest of the devices, please use the Fetch Rules/Config > From File
option.