datasheet

Firewall Analyzer
incognito security services

Managing your Firewalls.

Easy as pie.
Firewalls form an integral part of security infrastructure today;
managing a complex hierarchy of firewalls and/or firewall rules can
be cumbersome even for large diversified teams ­— manual policy
analysis is error-prone, and some organizations can have up to • Five-dimensional
dozens of changes per week. algorithms calculate how
firewall will respond to
Incognito Firewall Analyzer is a topology-aware technology offering, every packet
providing automated and non-intrusive firewall, router, and VPN • Root cause analysis
analysis for your infrastructure. The goal is to automate the entire
• In-depth VPN analysis:
process of assessing your policies, auditing for compliance and
unused, expired users and
tracking changes.
groups
With state-of-the-art technology and a high level of intelligent • ‘What-if’ analysis for
automation, Firewall Analyzer brings increased security and proposed changes
compliance along with better operational efficiency to your security • Preserve compliance
teams. By automating the audit and analysis processes and results, against PCI-DSS, ISO
you save time, resources and money. 27001, SOX, ISO, BASEL-
II, J-SOX, and NERC CIP

Quick Wins
• Rule optimization & cleanup
• Real-time e-mail notifications of policy, rule changes
• Generate topology maps based on discovered segments & routes
• Intelligent recommendation for rule re-ordering
• Non-intrusive, offline analysis
• Policy comparison across same or different firewalls
• Offline central repository for all firewalls
• Multi-tiered, deep risk analysis
• Meet industry & regulatory compliance requirements
• Extensive reporting, easy export to PDF, XML, HTML, Visio
• Lower Total Costs of Ownership (TCO)

Independence from variables

The service works with various firewall vendors including
For more information or a
Check Point, Juniper, Cisco, and Fortinet, and is
free trial, reach out to us:
independent of your topology and rule sets. It just works.
e-mail info@cognitoit.com
twitter @cognitoit
skype cognitoit

cognito
 datasheet
Firewall Analyzer

1 . Real-time monitoring of firewall policies Customer Firewalls

and rules to track changes, metrics
2 . Non-intrusive offline analysis of rules,
policies and traffic
3 . Patented five dimensional algorithm
Monitoring Probe
determines how firewall will respond to
each packet.
4 . Policies are compared against in-built Assessments Log
industry best practices. Apply Changes Rule Base
Routing Table
5 . C_SOC works closely with you
to interpret, analyze and provide Web Reporting

implementations as required. Customer Team (or)

Firewall Analyzer
Cognito NOC Team

Intelligent Policy Management

Powered by Algosec’s patent-pending technology
for risk analysis, Firewall Analyzer provides intelligent
policy management, audit and analysis. Track policy
changes in real-time — the What, Who, When,
Where and Impact. Automated root-cause analysis
to pinpoint the rule or policy causing issues. Query
firewalls individually, in groups, or in matrices across
different manufacturers.

What-if Analysis
Firewall Analyzer allows you to analyze firewall
policies before putting it into production. Any planned
changes can be first tested to ensure that all desired
changes will produce the required results. Detect
any undesirable consequences before changes are
actually applied across firewalls.

ADD ON Firewall Management

As an add-on to Firewall Analyzer, Precognito
provides real-time infrastructure management for your
firewall and overall network infrastructure to provide
availability and performance metrics in real-time.
With the expertise of the dedicated Cognito Network
Operations Center, Precognito helps you take the
monkey off your back.

cogn o
support information contact
support@cognitoit.com www.cognitoit.com info@cognitoit.com
twitter.com/c_noc blog.cognitoit.com twitter.com/cognitoit
skype c_noc cognitoit.com/news.html skype cognitoit