1.2. Overview of Firewall Builder Features

• Over 100 predefined objects for the most popular and widely used protocols and services

• Ability to create custom objects describing IP,ICMP,TCP,UDP or custom services

• Ability to create objects to describe hosts, networks and address ranges

• Templates to help you jumpstart your firewall policy, and do it right the first time. Templates implement standard policies for typical network layouts, which can later be extended and edited by hand

• The Network discovery tool that automates the creation of multiple objects by reading a hosts file, by crawling your network via SNMP, or by importing an existing firewall policy.

• An object oriented approach to the policy management: any change made to an object gets immediately reflected in all policy rules of all firewalls using that object. The configuration for multiple firewalls shares the same object database.

• The ability to turn a firewall policy into a configuration file or a script and then install it on a firewall with just a few clicks of the mouse.

• Convenient GUI that supports standard Copy/Paste operations for both text strings and network objects and allows for policy editing using drag and drop

• Find and Replace functionality that can be used within a policy or across a set of policies

• Support for several firewall platforms, including Cisco PIX and Open Source firewalls iptables, ipfilter and pf.

• The ability to print a single object, a firewall policy, the whole hierarchy, or export it to the text file in either plain text or html format

• Built-in, platform-specific help. Different firewalls provide different features and options. The Firewall Builder GUI provides help in appropriate dialogs to assist you in choosing the right options for your platform.