Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 8 replies
  • Answers 3 answers
  • Subscribers 28 subscribers
  • Views 2830 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Search of firewall rules.

BeEf

How can I search the firewall rules for IPs and/or Networks?

We are currently switching from fortigate and entering an IP in a seach dialog results in displaying all rules which contain the IP or including networks.

Is this really not possible on an XG or am I missing something? This should be not to difficult to implement ...



This thread was automatically locked due to age.
Parents
  • 0

    Hi,

    As you are familiar with Fortigate and now switching to Sophos so it may take some time to understand the GUI and options such as hidden opening. The SOPHOS XG firewall is having a RULE filter option on the TOP of Firewall Section. 

     

    You can filter With Source ZONE, Destination ZONE, Rules type, Status of Rule and you can search with Rule ID. The SOPHOS does not have a search with an IP address. 

  • 0 in reply to Deepak Verma

    Hello Deepak Verma,

    thanks for your answer. Yes I was aware of that. However in my opinion this is not enough. 

    If you have a large number of firewall rules you want to be able to search

    1)

    - for IP Adresses

    - IP Ranges that contain these adresses

    - Groups of IP Adresses or IP Ranges that contain the IP Adresses you are looking for.

    2)

    - for IP Ranges

    - Groups of IP Ranges that contain your IP Range (either as a list member or a subnet)

    For me these are necessary functions for administrating the firewall - at least if the ruleset has a certain size (starting at 20+ rules) and complexity

     

Reply
  • 0 in reply to Deepak Verma

    Hello Deepak Verma,

    thanks for your answer. Yes I was aware of that. However in my opinion this is not enough. 

    If you have a large number of firewall rules you want to be able to search

    1)

    - for IP Adresses

    - IP Ranges that contain these adresses

    - Groups of IP Adresses or IP Ranges that contain the IP Adresses you are looking for.

    2)

    - for IP Ranges

    - Groups of IP Ranges that contain your IP Range (either as a list member or a subnet)

    For me these are necessary functions for administrating the firewall - at least if the ruleset has a certain size (starting at 20+ rules) and complexity

     

Children