Firewall flagging Linux 32 bit version as having polycrypt virus
When attempting to download bin file I get message on my firewall that it contains the polycrypt virus. Suggestions?
FWSM Prompt Value
Dear all we have problem with Credentials Primary Info in Fetch Rules with FWSM Because my prompt in Primary Info is not (> ) , my prompt in Primary Info is ( login) How can I change prompt value default from enable to Login ? please help me ////
Set static users for devices?
I have my firewalls configured so that users must authenticate before using the network, however there are devices that we would not want or have a way to authenticate. The FWA is showing users for the traffic and protocols where I have users that have authenticated, but there is still unknown users which I understand is from the servers, firewalls, Ethernet switches and other devices that do not authenticate. Is there a way for me to set a users to a known device? Example: if I know all traffic
Protocol usage Unassigned" and "Unknown" protocols
Hi Need to get port details on Protocol usage report for unassigned and unknown protocols. Now in protocols tab it showing 17 or 6 ie tcp or udp protocol packet. Need port details on that like 3389/udp or 61298/tcp details. Kindly share the details how to get port no on unknown protocol reports.
data/report unavailable
We’re not seeing any data or statistics based on the snapshot below. The last time it received packets from the devices was last sept 23 What has caused this? What to do to resolve this? Please help. Thanks
Problem with Firewall Analyzer and linux installation.
Greetings, Can someone give some idea regarding the situation, Firewall Analyzer successfully installed on Linux server 64 bit CenOS. The web report form is available and Syslog Viwer shows that syslogs form Firewall are working and presented. However I do not see any report related to this syslogs, click on report shows "No Data Available". Also the port UDP 514 seems to be down from Firewall application and from Server operating system. The logs on Firewall application and startup logs shows
Harris Khan
Hello there, i am having some problem in Firewall Analyzer 7,its about calender ,my Firewall analyzer is not showing data,although it has discovered devices,but its not showing data neither in graph.Although my system time is correct,my Hwclock my system clock is sync and server dignostics is showing the correct time sync with hwclock but date in calender is stuck on 29th august 2013 and it doestnt get set even if i try to change date in calender to that i can veiw data collected
Harris Khan
Hello, i have installed Firewall analyzer 7.6 ,although my hardware clock and system clock are in sync in time but still firewall analyzer shows up with wroing server time in view server diagnostics.(time in server diagnostics is 1 hour ahead of actual system and hardware time.)is there any way i can change firewall analyzer time.I have restart firewall analyzer service but still problem persists.
ManageEngine® Firewall Analyzer 8.0 Released
ManageEngine® Firewall Analyzer 8.0 Released We are happy to announce the release of ManageEngine Firewall Analyzer 8.0 (GA) Download Standalone Edition Distributed Edition Existing Customers Existing users can seamlessly migrate from 7600 build to the 8000 release build. Download the Service Pack. What's new in this release? 8.0 - Build 8000 - Distributed Edition GA release of Firewall Analyzer Distributed Edition New Features - Admin Server There are no new features available for Admin Server
Harris
Hello, I am using firewall analyzer 7.6 .although i have my hwclock and system clock properly set but in view server diagnostics i am getting wrong time(time in server diagnostics is 1 hour ahead of normal time),does any body have hint what could be the problem.
HARIS KHAN
I have installed firewall analyzer7.2 on linux box ,all devices get identified in analyzer but i am not able to recognize SRX220,analyzer says it is unknown device ,also its logs are not properly recognized,Can some body help me with that why analyzer is not getting.
report storage > 'mailbox stores growth' does not display all of the mailbox stores
As you can see below we have 13 mailbox stores, but only 8 of them displayed on mailbox stores growth. Need your advice
Unbale to start FirewallAnalyzer after setup
Hi After my installation of FirewallAnalyzer on a RHEL 6.4 x64 (Santiago), I'm unable to start the application. Log files indicate a SEVERE error at the start when running runStandAlone.sh: Aug 27, 2013 2:44:06 PM com.zoho.framework.utils.crypto.EnDecryptImpl decrypt SEVERE: Encryption failed Further errors indicate it could not connect to the DB. SEVERE: Problem while starting Database due to:Could not create connection I've attached the full logfile. Can someone please advise? Thanks, Christophe
Mail Server Settings as Microsoft Office365 Server
Hi Team, I am using Firewall Analyzer and Netflow Analyzer where I set some alerts to send as email. It was working fine when I am using the Microsoft Exchange Server Locally, but few weeks back we moved to Microsoft Office365 Server. So I changed the Outgoing Mail Server Settings in Firewall Analyzer and Netflow Analyzer as Office365 Outgoing Server (smtp.office365.com and port 587) with TLS encryption but I am getting error and mails are not flowing outside. Error in Firewall Analyzer : ZIP
Alert based on DHCP activity
Hi Team, I am using Firewall Analyzer version 7.6 I am using Cisco ASA firewall and i am getting the logs from the Firewall. I configured the DHCP server in the Cisco ASA Firewall and i want to get alerts from the Firewall Analyzer if DHCP server is leasing the IP to any device in my network. Thanks, Ramesh
Cannot view checkpoint reports
Hello, I am testing firewall analyzer with checkpint firewalls. I installed the 32bit version since LEA is not supported on the 64bit one. I followed the instructions in this guide: http://www.manageengine.com/products/firewall/help/configure-firewall/configure-checkpoint.html and the opsec application server on the checkpoint smartdashboard shows that the trust is stablished, but no firewall is listed on the firewall analyzer left navigation pane. Did i miss something? Jorge Gil
FWSM Promt Value
Dear all We have a problem Credential in Fetch Rules . I know this error because my prompt before Enable username is (Login name ), its not >(enable) how can I change default prompt (>enable ) to my own prompt ?
help me!!!!
hi i import log in to firewall analyzer but report not show ????? please help. tanks
I do not see my firewall device in FWAnalyzer :-(
Hello, Fortigate 60C with firmware 5 patch 3 Firewall Analyzer 7.6 evaluation running on win 2008 R2 64bits When I open browser in localhost:8500 I am unable to see my firewall (fortigate 60C) I am able to see the live packets in the syslog viewer window opened through Firewall Analyzer. As an example of data: |189|date=2013-06-28 time=08:42:37 devname=PeterCC devid=FGT60C3G11025582 logid=0102043014 type=event subtype=user level=notice vd="root" src=10.123.31.13 user="ADMINISTRATOR" server="peter"
Upgrade DB from MYSQL to PostGresSQL
I just downloaded the newest version of Firewall Analyser and want to migrate from my old Win XP PC to a new Windows 2008 R2 64bit Server. However , the 2 year old install uses MYSQL , and the download from today uses PostGresSQL.... I know almost nothing about DBA , and can only find instructions for MYSQL to MYSQL -or- PostGresSQL to PostGresSQL. Help ? Many Thanks , Josh
Is there any way to associate a dashboard view to a user?
I can see in the manual it is possible but I do not see in the software how to make it. Thank you
New Firewall type
Dear Support, We try to add Hillstone Firewaal StoneOS Software Version 4.0 to Firewall Analyzer but unfortunately we don't have the user manual to add this and it is not listed in the compatible firewalls with Firewall Analyzer.\ How we can add this device to Firewall Analyzer? Regards,
Import Palo Alto rules
How do I import my Rules from the Palo Alto firewall into Firewall Analyzer? Do I need to dump the whole config file and import that in? Not as easy as the Cisco's/
Wrong VPN User Session time Report
Hi, I have schedule VPN User Session time Reports on daily basis while using Manage Engine Firewall Analyzer 7.2. It not provide all VPN sessions and just show few sessions. Kindly advice in the regard. Regards, Arshad
Sophos/Astaro UTM V9.0
Hi, I have one of these devices sending syslog to the firewall analyzer, but wouldlike to know if there is further support for this platform? It does do some application classification which I would like to see. I have downloaded the mibs and I have copied them into the \mibs directory - will these automatically used or do I need to do further config for them?
Website Details
Hi, I am trialing Firewall Analyzer 7. We have a Juniper SRX240 running UTM. The website details report has no data. What am I doing wrong in my SRX config? I have followed the SRX config guidelines found on your website and I seem to be getting most other traffic. Thanks,
User-IP Mapping
I am trying to use the User-IP Mapping functionality but under Settings/System Settings I do not see this option in Firewall Analyzer 7.
Port 514 is down
Hi, I have installed Firewall Analyzer on windows Server 2008 R2 on ESXi and I have config all the settings for firewall ASA device. But it still could not recognize device and revive logs from Firewall Device. Also it says that UDP Port 514 is down.(Syslog port(s) down. Please fix.) Why is that and could you please tell me what should I do to solve this problem ? Best Regards
Not getting Live traffic report
The report is not getting generated for last 2 days also in live report it shows that "No Data Available" In packet count can see the packets being received. Dhawal Mehta. 91-9920665836
Not able to get the live report from Firewall Analyzer 7
Hi, Not able to get the live report from Firewall Analyzer 7. The packet the being received from the devices & can be seen in the packet count, but still not able to view the Live report.
Problem to debug files databases
Hello to all, Now We have with the version 7 (7001) of Firewall Analyzer, In general the operation of the application is good only but We have a downside, In the application we configure in the section Data Storage Options that Database and log archive were 2 months but when We review the folder /../ManageEngine/Firewall/mysql/data/firewall, we detect files of more 3 moths ago, mainly ipd files. I once wanted to delete these files manually or by an application to connect to the database manager.
Not all URL's visited are showing on URL report
I am evaluating the firewall analyzer and in testing noticed that not all URL's are showing for a user in the URL report. I wonder if this has something to do with HTTPS traffic?
Can Netfow Analyzer and Firewall Analyzer be used on the same machine
Hello, I am testing Firewall analyzer on a machine that already had NetFlow Analyzer installed. Netflow Analyzer seems to be working fine but FirewallAnalyzer is not picking anything up. The router is a Cisco 1941W running IOS 15.1 The monitoring server is running latest Ubuntu * the Cisco is set to syslog to the monitoring server and CCP tells me that syslog is enabled and * it's configured to send informational(6) events to the IP of the monitoring server and * I have a buffer size of 5000
IPTables firewall host does not dislpay on dashboard
Dear Sr., For now I am testing trail version of the Firewall Analyzer 7.5 as stand-alone server. I configured Cisco ASA 5520 and Linux iptables host with shorewall iptables rule generation egine to send logs to the Firewall Analyzer. When I looked at the Firewall Analyzer dashboard, I saw only my CiscoASA but no linux host. In the "Live Syslog Viewer" window I see syslog entries from the linux host like this: <Linux HOST IP> <Firewall Analyzer IP> 1514 |6|Feb 4 21:44:37 <some name> kernel: Shorewall:loc2inet:REJECT:IN=eth0
ASA
Hi. I need some technical Help For cisco ASA 5510 I have Cisco ASA 5510 Firewall (version 8.2). My ISP give me two Public ip pool . Please find below example ip add details Outside interface ip :( 111.245.247.62 /255.255.255.252) My LAN Ip: 192.168.1.0/255.255.255.0 (user ip start:192.168.1.2/255.255.255.0) DMZ Ip is My local Subnet: 172.16.16.0/255.255.255.0 (My Server Ip add is:172.16.16.2/255.255.255.0) ISP Also Give Me one other 6 public Ip Pool (111.245.247.65
Displaying Time Graphs for Reports
HI Guys, Just wondered if anyone has found how to produce a 24hr graph against different filters. For Example we want to see when people are accessing social media and if this is outside of the lunch time period. Is this possible? Thanks
Firewall Analyzer Fail to run batch file
Hi, I am using a batch file under FWA Alert rules under the action run program. When the alert is trigerred, the batch file is not run. I confirmed the triggering since i have also email notification which is working normally. I can run the batch file normally under command line. I checked the path and it is ok. Here is the sample of the batch file @echo off c:\usr\bin\snmptrap -v 1 -c xxxxx yyyyy.1.3.6.7.2.1.3.1 yyyyy 1 6 '' .1.3.6.7.2.1.3.1.1.2 s "%1,%2,%3,%4,%5" Please help
Alert snmp trap not available
Hi, I cannot find alert action snmp trap on Firewall Analyser 7.5 build 7500. The data sheet says its possible may be i have missed out somewhere. The idea, I want to send trap from Firewall Analyser to Opmanager although it is integrated. For that matter, i would also need Firewall Analyser to process the traps since I am using an SMS gateway which is available on the Opmanager but not on FWA. Thanks
Export and Import DHCP logs
Hi, Our DHCP Server is established on Cisco Switch. I want to know how can I Export logs from DHCP server and import logs of DHCP into Firewall Analyzer. Cause if I understood correctly to enable the user/host name – IP mapping we just have to import DHCP logs in Firewall Analyzer. Could you please tell me how can I perform this action? Best Regards
Can't get firewall rules to import
I just setup the firewall analyzer and when I attempt to get the rules or do a compliance report I get this error: error: invalid command provided for fetching rules/access control list for rid ::1 Anyone know what the cause might be?
Next Page