AutoDiscovery from traffic logs

AutoDiscovery Traffic log sensors get syslog traffic log records and process them into network flows. Now AutoDiscovery automatically installs a traffic log sensor wherever there is a syslog server running on your system. The traffic log sensors require no configuration.

AppViz Support for Role-Based Access Control

Access control to objects now can be configured per users and roles. See AppViz users, permissions, and roles

AppViz Flow and diagram filtering capabilities

Now AppViz users can easily filter flows. See Application flows.

Back to top

New look for Login to ASMS Suite

Export Changes Summary Report: XLS and PDF

You can now export a Changes Summary Report to an Excel spreadsheet from both the ASMS interface and from the new Export list of device changes to XLS file API resource. See Viewing Summaries of Changes for a Specified Period of Time and Export list of device changes to XLS file .

In an exported PDF of the Changes Summary Report, you can now customize, per brand, which Rules columns you want to show. This clears a lot of potential clutter in the exported report! See AlgoPedia Article.

CIS Baseline Compliance report for Check Point

We’ve added a new CIS Baseline Compliance report for Check Point devices. The report provides guidance how to establish a secure configuration posture for Check Point Firewall versions R75.x – 80.x installed on Gaia Platform.

NSX-T enhanced risk notifications

Now AlgoSec provides risk notifications based on Context Profile.

Back to top

ASMS - Cloud Map enhancements

The ASMS map already displays and provides routing query for Azure network elements fed from CloudFlow. Now you can enjoy AWS Transit Gateway support, including network map visibility and Traffic Simulation Query for AWS.

Microsoft Azure enhancements

Traffic workflow MODIFY rule support, including ActiveChange

FireFlow can now recommend modifying existing Azure NSG rules to accommodate the requested traffic and push the change via ActiveChange.

Service Tags ActiveChange support

When you select an Azure Service Tag as the traffic source or destination, FireFlow can now push this Service Tag (with ActiveChange) towards the target NSG rule.

NSGs attached to subnets containing Azure ASE configuration

ASMS now provides full functionality for Azure NSGs that are attached to subnets containing App Service Environment (ASE) configuration.

Azure ActiveChange support in GA

Formerly an Early Availability feature, now available to all.

Back to top

Updated Reporting Tool (ELK version)

The AlgoSec Reporting tool (ART) has been upgraded to elastic 7.11. Check out the new look and feel!

See AlgoSec Reporting Tool.

New APIs in A32.10

Policy Optimization APIs

• Get a list of consolidated rules: for a specified device. See Consolidated Rules API.

• Get a list of redundant special case rules: for a specified device. See Redundant special case rules API.

• Get a list of rules without logging: See Rules without logging API.

• Get a list of disabled rules: for a specified device. See Disabled rules API.

• Get a list of rules with empty comments: for a specified device. See Rules with empty comments API.

• Get a list of unattached objects: See Unattached Objects API.

System Health Checks

New to the algosec_conf menu: option System Health, replaces the old option Services Status with three sub-options: Services status, NEW enhanced System Health check and NEW Check Readiness to Upgrade to a target build. See System Health.

Security Enhancements

• Configure lockout rules for SSH login: You can configure lockout rules for failed login attempts to ASMS via SSH. See Configure lockout rules for SSH login.

• Audit logs for files that are monitored when deleted, created, or changed: Audit logs are now kept for specific files that are monitored when deleted, created or changed.

• SSO SHA-256 support: Now AlgoSec SSO now supports SHA-256 Hash encryption.

• Passwords Encryption in AES256: We’ve bolstered security by moving to AE256 encryption.

AlgoBot Configuration via ASMS Administration

In A32.10, the AlgoBot Agent is part of ASMS. You can now configure AlgoBot in the AFA Administration area INTEGRATIONS tab. See Configure AlgoBot on the ASMS server.

AlgoBot Cisco Webex Teams support

AlgoBot provides quick and easy access to core ASMS functionality from the comfort of your organization's existing chat platforms. Now you can also chat with AlgoBot via Cisco Webex Teams. See Install AlgoBot on Cisco Webex.

FireFlow separation (in GA)

If you use High Availability, the secondary machine now functions as the primary FireFlow server, thus improving FireFlow performance.

Back to top

Check Point R80

• Policy visibility support now includes Inline and Ordered Layers. Including Change History support.

• Policy Optimization support for all Inline and Ordered Layers.

• TSQ, Risk, and Risky Rules for all Inline and Ordered Layers (Early Availability features).

NSX-T: FireFlow support

Support for FireFlow Work Order recommendations.

FortiManager

• Object Workflow ActiveChange: Added ActiveChange support for the Object Workflow for FortiManager.

• Route-based VPN: Both dynamic and static routes for tunnels.

Cisco ACI MSO: ActiveChange support (EA)

Enable ActiveChange for MSO-managed Cisco ACI devices to add, modify, and remove rules from the policy directly from FireFlow. See Enable ActiveChange for MSO-managed Cisco ACI tenants.

Cisco Firepower

• ‘Changed by’ support for Objects

  

Cisco ASA: Ticket Creation API supports IPv6

The FireFlow REST API Create a traffic change request now supports IPv6 template for Cisco ASA devices. See Create a traffic change request.

Cisco Meraki

• VPN support in Early Availability

• TSQ results include blocking or allowing VPN rules.

Back to top