WallParse Firewall Audit Tool – Firewall Config Analyzer

WallParse Firewall Audit Tool is a firewall audit tool for Cisco ASA firewalls. It parses configuration files from Cisco ASA and there is also experimental support for Fortigate firewall CSV export files. The intended use is to allow firewall auditors to audit firewalls without having login credentials for the firewall.

The configuration file is exported (for example using “show running-config”) and is imported into WallParse.

WallParse Firewall Audit Tool - Firewall Configuration Review, Analysis and Normalization
WallParse Firewall Audit Tool – Firewall Config Analyzer

WallParse Firewall Audit may be of really good help when conducting audits for PCI DSS 3.2 compliance, maintaining firewall ruleset according to best practice. You can read more on SANS web page here: Methodology for Firewall Reviews for PCI Compliance.

WallParse is extremely simple to uses and its features include searching for firewall rules (ACL) with specific characteristics. It also gives warnings for common configuration mistakes (such as any-any-rules).

Main Features:

  • Gives an overview of Network Objects in the firewall configuration.
  • Can compare a configuration with a previous configuration marking what has been changed (really useful for firewall audits).
  • Gives automatic warnings for common configuration mistakes.
  • Exports to CSV or SQL-lite database for processing in for instance Excel
  • Allows for searching for specific ACL rules using SQL Queries
  • Use the command line for executing SQL-queries and export results.

You can read more and download this tool over here: https://www.wallparse.com/

Share