Firewall Analyzer supports logs received from Cisco security devices like, Cisco Adaptive Security Appliances (ASA), Cisco VPN Concentrator, Cisco IOS Firewalls, and also Cisco Firewall Service Module (FWSM) for Cisco Catalyst series. Firewall Analyzer can analyze, report, and archive logs received from Cisco PIX Firewall (it also supports other firewalls).
Cisco PIX firewalls do not create log files like other firewalls, instead directs log streams to a syslog server. In turn syslog server writes the log information into a file. Firewall Analyzer has an inbuilt syslog server which can receive the Cisco PIX firewall log streams. You need to configure Cisco PIX firewall to direct the log streams to the Firewall Analyzer syslog server. After receiving the log stream from Cisco PIX firewalls, Firewall Analyzer analyzes the syslogs to generate reports and that way it acts as a Cisco syslog analyzer.
Cisco PIX Firewall syslogs reveal a lot of information on the security breach attempts at the firewall and nature of traffic coming in and going out of the firewall. Cisco PIX firewall analyzer analyzes and generate reports. These reports help you to plan your bandwidth requirement based on the bandwidth usage across the firewalls. Analyzing the firewall security logs plays an important role in business risk assessment. Firewall Analyzer offers many features like collecting, analyzing and reporting on firewall logs.
Cisco announced end of life for PIX firewalls. But Firewall Analyzer will continue to support Cisco PIX firewall logs. However, Cisco recommends its PIX firewall customers to switch over to Cisco ASA firewalls.
Firewall Analyzer supports the following reports for Cisco PIX firewall: