Analyzing Firewall Health, Tenant & Group States, and Configuration Details

Reviewing the firewall infrastructure to ensure efficient and secure network management is important. This review is crucial for maintaining our network security and identifying any vulnerabilities. You can use SonicWall AI for Monitoring & Insight (SAMI), along with NSM SaaS and MSW resources, to gather specific information.

Topics

• Gathering Comprehensive Firewall Data from NSM SaaS
• Detailed Analysis of Firewall Configurations and Status
• Focused Reviews for Specific Firewall Groups or Subsets

 

Gathering Comprehensive Firewall Data from NSM SaaS

• You can retrieve a complete list and count of both managed and unmanaged firewalls across the tenants. This data is crucial for understanding the scale of the network's firewall infrastructure.

  

• You can retrieve the status of each firewall, whether it's online or offline. This helps to identify any immediate connectivity issues that need to be resolved.

• You can assess the High Availability (HA) status of the firewalls to ensure that they are correctly configured for failover capabilities.

  

• A review of firewalls with expired licenses can be conducted. Renewing these licenses is critical to maintaining the security and functionality of the network.

• Firewalls with Zero Touch Provisioning (ZTP) enabled or disabled can be noted; this specific detail is fetched from MSW. ZTP status is essential for understanding how new firewalls can be onboarded with minimal manual intervention.

Detailed Analysis of Firewall Configurations and Status

• You can collect firewall uptime data to identify units with unusual restart patterns or stability issues.

• You can identify the firewalls that are not running the latest firmware, or those running firmware versions below a specified threshold. Keeping the firewalls updated is key to protecting against recent vulnerabilities.

  

• You can check the presence of backup configurations for each firewall. Backups are essential for quick recovery in the event of a failure.

• You can review firewall groups and their assignments. This helps in managing firewalls more efficiently and in alignment with our organizational structure.

Focused Reviews for Specific Firewall Groups or Subsets

• You can view the collected data for firewalls within a specified group, for example, Managed Firewalls in Group Branch 2. This allows for department-specific security management.

• You can conduct an in-depth review of a subset of firewalls, such as viewing the group assignments for a list of unmanaged firewalls identified in the initial data fetch. This helps in understanding the distribution and management of firewalls that are not actively managed.