WHAT'S NEW

Feb 23rd, 2008

Version 2.864 released.
- Added several new message types for Pix and ASA
- Fixed minor bugs

Aug 7th, 2007

Version 2.861 released.
- Added several new message types for Pix and ASA
- Added new commands to the Configuration Analyzer Engine
- Fixed issues with log type detection method for comma separated log formats

Oct 11th, 2006

Version 2.8551 released.
- Fixed reporting for messages with "negative" connection number

Oct 11th, 2006

Version 2.854 released.
- Fixed bug affecting the reporting of total sent traffic
- Added several new message types
- Removed the Sample log and log profile - contact support@firegen.com for assistance in configuring FireGen or for log samples

Sep 12th, 2006

Version 2.852 released.
- Changed DNS TTL behavior - the DNS entries will expire after the configured TTL (default 10 days) regardless if they show up in the report during the TTL interval (previous to version 2.852 FireGen would not attempt to re-resolve an IP address if it kept being used in the report)
- Added 9 new message types (including the ASA FTP upload/download syntax).
- While available in some previous releases, several customers confirmed that the ability to read the logs from ODBC source is working fine. See how to setup the Kiwi Syslog server in order to generate logs compatible with FireGen for Pix Log Analyzer and save them in an ODBC-compliant database

Mar 17th, 2006

Version 2.844 released.
- Fixed bug stopping trial installation from using the Monitor Logs feature
- Fixed bug related to improper parsing of denied URLs containing a comma (,)
- Added 16 new message types

Mar 7th, 2006

Version 2.841 released.
- Added Whois resolution for public IP addresses that do not resolve to a host name.
- Added the ability to toggle on/off the opening of the report in a browser when using the FireGenPix2CLI.exe analyzer
- Added new message types

Jan 6th, 2006

Version 2.831 released. Provided compatibility for Windows NT (no DNS resolution). Added the ability to specify all the settings in a configuration file that overwrite the GUI settings. This allows the creation of unlimited analysis profiles.

Dec 5th, 2005

Version 2.827 released. Fixed problem related to the analysis of zipped logs when the logs' location contained a folder starting with P. Added support for Cisco ASA appliances.

Nov 26th, 2005

Version 2.811 released. Added a new major feature, the ability to monitor the firewall logs for various keywords and/or thresholds. Email, sound and custom script notifications are generated when the configured thresholds are triggered (i.e. if the number of denials per hour is higher than 100).
Another important feature added: ability to zip the logs after they are analyzed.
As a beta feature, FireGen is also able to analyze Cisco router logs. Please contact us for more details.

Nov 3rd, 2005

Version 2.751 released. Fixed an .msi packaging problem that was causing the error: Component ‘TABCTL32.OCX’ or one of its dependencies not correctly registered: a file is missing or invalid.

Nov 2nd, 2005

Version 2.75 released. Added support for more Pix messages. Fixed bug related to emails not being delivered properly if more than one log profile is running the scheduled analysis. Fixed bug related to log type 20 where all the traffic was reported within the 0:00 - 1:00 interval.

The FireGen configuration interface will now attempt to run the analysis using the FireGenPix2CLI.exe analyzer for more verbose output during the analysis.

Aug 31st, 2005

Version 2.67 released. Few bugs fixed: email failure for the scheduled reports. Added the ability to specify a different location for the gif files.

July 14th, 2005

Version 2.60 Beta released.
Graphs added for the applicable report sections.

March 15th, 2005

Version 2.45 released.
Fixed bug related affecting the monitoring of denied connections
Adjusted the configuration interface in order to properly display the hour for installations on non-English Windows computers

February 15th, 2005

Version 2.42 released.
Added support for more Pix messages and syslog formats.
Fixed bugs related to incoming connections.
A command-line interface analyzer is available now for better feedback during analysis and improved scripting capabilities.

October 28th, 2004

Version 2.18 released.
Added support for more Pix messages and syslog formats.
Added support for more report date formats.
Added the ability to specify up to 30 custom protocols.

October 1st, 2004

Version 2.14 released.
Added support for more Pix messages.
Added support for more Pix and FWSM configuration commands.
Modified HTML source for the IP Forensics reports so they can be edited with HTML editors.

August 30th, 2004

Version 2.13 released.
Added support for more Pix messages.
Fixed bug that caused an infinite loop when "Create port hyperlinks" was unchecked and the TCP port was "0"
Modified HTML source for the Configuration Analysis reports so they can be edited with HTML editors.

August 23rd, 2004

Version 2.11 released.
Added the ability to email the reports as zipped attachments.
Added the ability to create CSV reports (for processing with other report tools).
Added the ability to hide certain "Detailed messages" sections.
Added the option to remove certain subnets from the DNS cache.
Fixed IP Forensics reports for the IP address of the firewall interface.
Added support for more syslog formats.
Fixed bug related to duplicate reporting when the reports contain data from several firewalls.
Added support for more Pix log messages.
Added "Advanced settings" to the configuration interface.

June 24th, 2004

Version 2.01 released.
Improved the reporting of "no connection" type of denial messages. Added support for more syslog formats for the IP Forensics feature and fixed bug related to the reported traffic from a certain IP address.

June 22nd, 2004

Version 2.0 Final released.
Added support for more syslog formats. Improved the IP Forensics feature.

June 18th, 2004

Version Release Candidate 1.20
Added support for more syslog formats.
Added an new report time interval option: "Today".
Added a new "IP Forensics" feature

June 10th, 2004

Version Beta 1.18
Added the option to have both sorting by connections and sorting by bandwidth for the Internal and External IP Addresses sections.
Added support for more syslog formats.
Added an new report time interval option: "Today".
Added support for more commands in the Configuration Analyzer.

June 7th, 2004

Version Beta 1.16
Replaced the sorting by connections with sorting by bandwidth for the Internal and External IP Addresses sections.

June 1st, 2004

Version Beta 1.15
Added support for more syslog formats. Added more protocols and additional troubleshooting information for the initial setup.

May 27th, 2004

Version Beta 1.14
Added support for syslog formats. Fixed bugs related to traffic reporting for Cisco PIX firmware 6.3.x. Added new section "External IP Addresses".

May 20th, 2004

Version Beta 1.12
Added support for more Cisco commands to the Configuration Analyzer (object-groups protocols, ICMP and groups of groups). Added support for more access-list formats.

May 17th, 2004

Version Beta 1.11
Added support for more Cisco commands to the Configuration Analyzer (object-groups services and networks). Fixed minor bugs.

May 14th, 2004

Version Beta 1.10
Fixed bugs that caused FireGen to fail to display the Traffic and Protocol statistics for certain conditions when Pix Firewall is using firmware 6.3.1.
Fixed bug that caused some log entries to be ignored (in very specific conditions).
Added additional protocols.

May 5th, 2004

Version Beta 1.09
Fixed bug that caused the display of the same "Last Message" time for all the message types in the "Details" section.
Increased the FireGen Configuration Retriever support from 240 configuration lines to 2400.

May 3rd, 2004

Version Beta 1.08
Several subsections reorganized in 4 main sections:
- Protocols statistics
- Traffic statistics
- Denials statistics
- VPN, IDS, Management statistics
Hyperlinks added in the summary section of each firewall for easier navigation through the report.
- Fixed ICMP denials processing bug
- Fixed denials totals processing

May 2nd, 2004

Version Beta 1.07
- Several section added: VPN Events (VPN tunnels, VPN users), Traffic by hour (Inbound, Outbound and Total), IDS Events, improved "Denied connections".
- DNS hosts TTL added: unused host/ip combinations will be removed in unused for 10 (or configurable by user) days.
- Added the ability to customized (add/modify) the protocols' names, as shown in the report
- Fixed DNS cache issues
- Added the option to find the firewall logs based on their time stamp and not by file name

April 7th, 2004

Version Beta 1.06 - Bugs related to the DNS cache handling fixed.

March 26th, 2004

Version Beta 1.05 - Improvements made to the reporting of monitored IP addresses. Fixed bug related to reports not being emailed if more than one log profile was used.

March 24th, 2004

Several bugs related to logs from multiple firewalls fixed. Added support for firewall configuration retrieval for Cisco PIX 6.3.x.

March 23rd, 2004

Added more templates for syslog names, improved the method of reporting most visited web sites, added the ability to email the reports as attachments

March 19th, 2004

Added the ability to send reports as attachments and the ability to manually specify the log format without keeping a sample log

March 18th, 2004

Bug in the scheduler service removed.

March 17th, 2004

FireGen for PIX Log Analyzer 2.0 Beta 1 released.