Network paths of interest are automatically discovered and visually highlighted.
Designed to work offline, using firewall and router configuration files loaded into the tool by the user via the graphical front-end. NP-View uses the elements of connectivity information available in the configurations (such as CIDR descriptions of subnetworks facing interfaces, route statements, and VPN descriptions) as the basis for “growing” an inferred topology.
Provides complete graphical connectivity maps generated by NP-View from information parsed from the firewall configuration files. The views are filterable (to isolate specific subnetworks or traffic flows) and customizable. For example, critical networks can be moved around on the canvas such that they are better highlighted, making later analysis easier. End nodes can be color-coded so that the relative importance of a node can be easily seen. DNS or hosts file reverse-lookup can be used to label nodes appropriately. The connectivity maps may be saved as jpeg images.
Allows users to apply filters to the rule-sets. For example, you might filter to reveal only the traffic that results from rules with netmasks greater than /24, rules with “any” as the source or destination, rules with publicly routed IP addresses, or “deny by default” rules.
Outputs analysis results in a CSV- or XML-format results file. All fields from the analysis and annotations are exported to the CSV file, which can be further annotated and sorted in an external spreadsheet program, such as Microsoft’s Excel. The annotation feature allows operations and technical people to comment on the connectivity allowed at the critical access points, assisting in communication within the team and in creation of documentation.