Reports

You can create, edit, distribute, and manage reports for your network devices. Detailed reports on firewall rules and connections between devices are often required to satisfy various regulatory standards, such as PCI compliance.

The following report options are specific to QRadar Risk Manager:

Table 1. Report options for QRadar Risk Manager
Report option Description
Connections The connection diagrams for your network devices that occurred during your specified timeframe.
Device rules
The rules configured on your network device during your specified timeframe. You can view the following rule types for one or many network devices by using this report option:
  • Most used accept rules
  • Most used deny rules
  • Least used accept
  • Least used deny rules
  • Shadowed rules
  • Unused object rules
Device unused objects Produces a table with the name, configuration date and time, and a definition for any object reference groups that are not in use on the device. An object reference group is a collection of IP addresses, CIDR addresses, hostnames, ports, or other device parameters, which are grouped and assigned to rules on the device.