YixueIntroduction
Yixue is a free firewall analysis tool oriented to enterprise-grade environments that need tools to improve, analyze and study their installations.
Yixue means "medicine", and this is its primary goal: to cure the massive degradation on corporate firewalls.
Key features
It has a distributed architecture that allows to manage many firewall at the same enviroment, giving the administrator a unique view of the whole picture.
Yixue has agents who take information directly from filtering modules, taking active connections samples, also has agents for gathering database objects and rules. An XML parser normalize information into a relational SQL backend, to finally, present reports to end-users in a friendly HTML interface.
Current features
-
Show firewall rules, objects and all extended information (NAT, services, interfaces...)
-
Show reports of each rule usage, for implied objects in destination or source.
-
Show reports for most accessed objects and servers using active connections as reference.
- Search, navigate, and show all information in each loaded policy.
