Hi there,
currently I am searching for a nice tool (OSS/commercial) to do some jobs on my checkpoint firewall rules (cpdb2html generated a 348 page file):
1. Aggregation of rules - Let's say every server in a subnet has ssh enabled then I would like to create ONE rule for the whole environment and remove the dupes.
2. Visualization - I'd like to have a nice graph of my subnets where I can see the hosts and the ports which are openend.
I am no firewall administrator and I only saw the checkpoint GUI once - so maybe I am missing something obvious here.
Anyone?
Thanks and Kind Regards,
Ruediger G. Biernat