Solved: Re: Firewall Policy

benolyndav · ‎01-20-2023

Hi

Is it possible to generate a report which shows our full FTD policy (Firewall Policy). ??

Thanks

Marvin Rhoads · ‎01-20-2023

In FMC, click the "generate Report" icon next to the Access Control Policy in the ACP listing. That gives you all of the security-related settings in a PDF.

Things like device settings (interface, routing etc), VPN and NAT aren't included but most everything else is there.

View solution in original post

Marius Gunnerud · ‎01-20-2023

This is unfortunately not possible. You would need a third party software to do this for you or create a script that dumps the rules into a csv file or similar.

We use AlgoSec Firewall Analyzer for firewall policy reports and compliance checks. Worth looking into in my opinion.

--
Please remember to select a correct answer and rate helpful posts

balaji.bandi · ‎01-20-2023

Not on box, you can do some orchestration tools likeTuffin.

i was doing some research some time back found below usefull :

https://github.com/TheAlanNix/cisco-security-tools#

check some devnet API :

https://community.cisco.com/t5/network-security/api-based-tool-to-save-the-access-control-policy-from-fmc-as-csv/td-p/3943079

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Marvin Rhoads · ‎01-20-2023

In FMC, click the "generate Report" icon next to the Access Control Policy in the ACP listing. That gives you all of the security-related settings in a PDF.

Things like device settings (interface, routing etc), VPN and NAT aren't included but most everything else is there.

Firewall Policy

Cisco Secure Firewall (FTD) - How To

Secure Firewall (FMC/FTD): はじめての AI アシスタント

Secure Firewall – Tips – Site-to-Site VPN(Policy-Based)

Configure Identity Policy on Secure Firewall Management Center (FMC)

Firewall: Cisco Secure Firewall の rommon> から USB Memory 内のイメージを起動する方法