01 - INGEST
Pull policies from your firewall
Native integration with Panorama via syslog and XML. Lightweight to onboard.
02 - ANALYSE
Compare rules to real traffic
App-IDs, ports, source and destination addresses - observed across your selected window.
03 - GENERATE
Concredte hardened rules
New version of rule is recommended which follows the principle of least privilege - only allowing traffic that has been seen.
04 - VERIFY
Re-check before deployment
Confirm the recommendation still matches reality at the moment you push it. No surprises.