Firewall Analyzer is compatible with the following firewall devices.

Click on the device name (if applicable) to see instructions on configuring firewalls for reporting and sending logs to the Firewall Analyzer.


Firewall Analyzer Compatible Firewalls

Company Firewall - Version WELF Certified Other Log Format
Check Point

Log import from all versions and
LEA support for R54 and above
VSX Firewalls - Virtual Edition supported

How to configure?

Palo Alto

Palo Alto Firewalls PA 5000 series,
PANOS 4.1.0 or later
PA-5260, PA 5220, PA-5060, PA-5050, PA 850, PA-220, M-100

How to configure?

Cisco Systems

Cisco Pix Secure Firewall v 6.x, 7.x,
Cisco ASA - Virtual Contexts supported
Cisco IOS 3005, 1900, 2911, 3925
Cisco FWSM - Virtual Contexts supported
Cisco VPN Concentrator
Cisco CSC-SSM Module v6.3.x or later
Cisco Botnet module
Cisco FireSight module

How to configure?

How to configure with ASDM?


Cisco FirePower (v 6.3.0 or later), 2100 series and 4100 series

How to configure?


Cisco IronPort Proxy server

How to configure?


Cisco Meraki Firewall

How to configure?


FortiGate family,
SSL VPN (v 300A, v 310B or later)
IPS modules,
VDOMs supported

How to configure?


Juniper Networks
Juniper SRX series
SRX100, SRX210, SRX220, SRX240, SRX 550, SRX650, SRX1400, SRX3400, SRX3600, SRX 4100, SRX5600, SRX5800
SRX - Security and Application logs,
VDOM support
SSL VPN series
4500 & 6500, New Format Logs
ISG series
8350 series

NetScreen series, NetScreen most versions of Web Filter & Spam Modules

How to configure?


PRO 230, 2040, 3060, 4060, 5060,
TZ 100/ TZ 100w, TZ 170, TZ 170 Wireless, TZ 170 SP Wireless, TZ 200/ TZ 200w, TZ 210/ TZ 210w, TZ 300, TZ 400
NSA 240, NSA 2400, NSA 2400MX, NSA 2600, NSA 2650, NSA 3500, NSA 3600, NSA 4500, NSA 5000, NSA E5500, NSA E6500, NSA E7500, NSA E8500, NSA E8510, Management, Application control & SSL-VPN logs,
SSL-VPN appliance
Sonic OS 5.8.x and above. Supports IPFIX with extensions

How to configure?


Firebox Models v5.x, 6.x, 7.x, 8.x, 10.x, 11 or later
Firebox X series, x550e, x10e, x1000, x750e or later
XTM version 11.9

How to configure?

Huawei Huawei  

PfSense 2.2, 2.3, 2.4 or later

How to configure?

Security Linux v7.0, v8.0

UTM 9.0 or later (formerly Astaro)
How to configure UTM?


XG v15,v16,v16.5,v17.0.x
How to configure XG?


Cyberoam - Cyberoam Firewall version: 9.5.4 or later
How to configure?

Securepoint Securepoint UTM Firewalls  

3Com X-family Version or later
Earlier versions will work to a lesser extent

How to configure?

Anchiva Secure Gateway Series 200, 500, 800, 1000, 2000 or later  
Applied Identity Identiforce  
ARKOON Network Security ARKOON 2.20 or later
Aventail Extranet Center v3.0 or later
AWStats Most versions  

VF250 Version 5.4.1 or later
Barracuda Email Security Gateway - Most versions
Next Generation Firewall (NGFW) - Model - F-600

BlueCoat SG Series, Proxy Server, Proxy SGOS  
Cimcor CimTrak Web Security Edition or later
Clavister Most versions  

CyberGuard Firewall v4.1, 4.2, 4.3, 5.1 or later

How to configure?


Most DFL versions

How to configure?

Digital Arts i-Filter version 10 (Proxy server)  
DP Firewalls DP Firewall 1000-GE or later  
Electronic Consultants IPTables Firewall  

BIG-IP firewalls 9.x to 13.x or later

How to configure?


Firewall version 5.5 or later (Formerly Stone Soft)

How to configure?

FreeBSD Most versions  
Funkwerk Enterprise Communications Funkwerk UTM  
Global Technologies Gnatbox (GB-1000) 3.3.0+ or later
Ingate Ingate firewall: 1200, 1400, 1800/1880 or later
Inktomi Traffic Server, C-Class and E-Class

IPCop Firewall Version 1.4.17, 1.4.18 or later

How to configure?

Kerio Winroute  
Lenovo Security Technologies LeadSec  
Lucent Security Management Server V. 6.0.471 or later
(formerly Secure Computing)
SnapGear, SG580,
Sidewinder (uses SEF Sidewinder Export Format),
Sidewinder (S4016) Ver 8.3.2 - Firewall Enterprise

Microsoft ISA (Firewall, Web Proxy, Packet Filter, Server 2006 VPN) or later
Server 2000 and 2004 or later,
W3C Log Format,
Threat Management Gateway (TMG)

How to configure?


Firewall all versions

How to configure?

NetApp NetCache  
NetASQ F10, F100 v3.x, v8 or later
NetFilter Linux Iptables  
Netopia S9500 Security Appliance v1.6 or later
Network-1 CyberwallPLUS-WS, CyberwallPLUS-SV or later
Opzoon Firewall ISOS v5 or later  
Recourse Technologies ManHunt v1.2, 1.21 or later
Ruijie Firewall  

Most versions

Squid Project

Squid Internet Object Cache v1.1, 2.x or later

How to configure?

St. Bernard Software iPrism 4.1, Proxy server 7110

Most versions

Sun Microsystems SunScreen Firewall v3.1 or later
VarioSecure Most versions  
Vyatta Vyatta Firewall - IPv4 Firewall, IPv6 Firewall, Zone-Based Firewall  

Proxy server - Most versions

How to configure?


ZLD 4.25 or later



If the Firewall device logs contains the time zone information, Firewall Analyzer processes it and normalizes it to time zone of Firewall Analyzer Server


Firewall Rule Management Support

Firewall Analyzer provides the rule management reports for the given list of firewalls.

Devices Mode Rule Cleanup Change Management Rule Management Standards Security Audit
Cisco ASA CLI, File          
Cisco PIX CLI, File          
FortiGate CLI, File          
WatchGuard CLI, File          
SonicWall CLI, File          
Check Point API          
Cisco FirePOWER CLI, File          
PaloAlto API          
CLI, File          
Juniper SRX CLI, File          
Huawei CLI, File          
pfSense CLI, File          
Sophos XG API          
Sophos UTM API          
Vyatta CLI, File          
Juniper NetScreen CLI, File          
Check Point File          
NetFilter File          
3Com File          


NetFlow Log Support

Cisco Cisco ASA NetFlow Log

Want rule, log reports of your device to get added?

A single platter for comprehensive Network Security Device Management