AFA V6.

1 Release Notes

AlgoSec Firewall Analyzer V6.1 Release Notes

(August 2011)

94 Em Hamoshavot Road, Azorim Park. Alon-B Building. Petach Tikva, Israel 49527

T: +972-3-921-7377 F: +972-3-921-9199 E: info@algosec.com

AlgoSec.com

Page 1

AFA V6.1 Release Notes

The following features were added to AlgoSec Firewall Analyzer (AFA) V6.1, made generally available on August 2011.

Security Management Suite Features

Juniper SRX (Junos-based) Support with Direct Access AFA now supports Juniper SRX (Junos-based) firewalls, where configurations are collected directly from the SRX device (rather than through an NSM). Policy change monitoring including e-mail alerts upon policy changes and reports on policy changes over selected periods of time through the Web interface. Full firewall analysis, optimization, risk check, and compliance reporting. Routing table analysis, including a firewall connectivity diagram. Routing-aware traffic query capabilities.

94 Em Hamoshavot Road, Azorim Park. Alon-B Building. Petach Tikva, Israel 49527

T: +972-3-921-7377 F: +972-3-921-9199 E: info@algosec.com

AlgoSec.com

Page 2

AFA V6.1 Release Notes

Fortinet FortiGate and FortiManager Support AFA now supports Fortinet FortiGate firewalls (versions 3.x and 4.x). Configurations may be collected directly from the FortiGate device or through the FortiManager (version 4.x) that manages it. Logs are collected through a syslog-ng server. Note: syslog-ng support is available in various topologies, using an existing syslog-ng server or as part of the AlgoSec Suite solution. Policy change monitoring including e-mail alerts upon policy changes and reports on policy changes over selected periods of time through the Web interface. Full firewall analysis, optimization, risk check, and compliance reporting. Routing table analysis, including a firewall connectivity diagram. Routing-aware traffic query capabilities. Quickly and easily connect AFA to all of your FortiGates via a FortiManager, rather than one by one. Communication with the FortiManager is based on the standard SOAP API.

94 Em Hamoshavot Road, Azorim Park. Alon-B Building. Petach Tikva, Israel 49527

T: +972-3-921-7377 F: +972-3-921-9199 E: info@algosec.com

AlgoSec.com

Page 3

AFA V6.1 Release Notes

Enhanced Access Control Management AFA enables efficient and easier maintenance of user rights and permissions, through role-based access control (RBAC) and optional interfacing with ActiveDirectory / LDAP to support the central enterprise roles directory. AFA now allows defining user roles, which include device authorization and general permissions in AFA. You can assign roles to users locally in AFA, or have AFA do so dynamically according to the users membership in ActiveDirectory / LDAP groups. Support for ActiveDirectory / LDAP forests allows authenticating and authorizing users in multiple domains.

94 Em Hamoshavot Road, Azorim Park. Alon-B Building. Petach Tikva, Israel 49527

T: +972-3-921-7377 F: +972-3-921-9199 E: info@algosec.com

AlgoSec.com

Page 4

AFA V6.1 Release Notes

AFA Features
Continuous Log Collection AFA log collection is now performed throughout the day, independently of report generation. Logs are collected throughout the day and then used in subsequently generated reports. This capability results in faster and more efficient report generation, especially for environments with massive log volume. Easier log-collection status tracking and troubleshooting with logging status display.

Monitoring Usability Improvements AFA 6.1 includes usability enhancements in the monitoring view of devices and groups, as well as look & feel enhancements. Quickly and easily pinpoint changes, by sorting and filtering detected changes according to device name, date range, and the user who made the change. An enhanced monitoring view for groups and matrices allows quick detection of changes across many devices. Easier monitoring status tracking and troubleshooting with monitoring status display.

Traffic Query Enhancements AFAs traffic query capabilities have been enhanced for better usability and to support complex queries. AFA allows querying traffic that includes multiple sources, destinations, and services, for easier and more accurate troubleshooting and change planning. AFA also allows querying services that are not predefined in the system or on the firewall, for adhoc queries. An API for executing a list of traffic queries in batch enables fast integration of traffic queries and support of various enterprise needs such as handling shutdown and migration of a large amount of servers.

94 Em Hamoshavot Road, Azorim Park. Alon-B Building. Petach Tikva, Israel 49527

T: +972-3-921-7377 F: +972-3-921-9199 E: info@algosec.com

AlgoSec.com

Page 5