Back to The UnF Networks
Back to /tufin/
Tufin Knowledge Center

The Unf Networks // Tufin
Tufin Orchestration Suite - APG Report addon

One of the many valuable visibility enablement features available on Tufin Orchestration Suite is the Automatic Policy Generator, or APG.

As it's name suggests, it was created to enable the customer to add a Firewall to protect a new perimeter with few or no initital information of it's traffic requirements and suggest new replacement rules with a sense of reduce permissiveness.

APG works using a continuous analisys on traffic hit logs related to selected rules that goes beyond the Rule and Object usage report. This report threats Any, groups or ranges as objects so it does not list the usage by it's members once not explicity listed on rules.

To enhance the granularity of APG's results, the customer can select the level of permissiveness and work on the report as it's in CSV format or import it into a 3rd party tool.

The APG Report addon is an example of how this can be done in a more online and flexible way, adding filters and the generation of CSVs ready to be imported into SecureChange tickets.

You can deploy it into your running TufinOS v2.18, or later, and Tufin Orchestration Suite R18, or later.
It requires the PHP PDO support for PostgresSQL and the installation tool will tell you if it's missing and how to enable it.

Addons installation script requires DNS/HTTP/HTTPS Internet connectivity directly from TufinOS.

Version 1.5.1 (2020-09-22)

1 / 5
v1.5 listing results with no filters, only changing destinations to Any
2 / 5
v1.5 listing results with both filters and only changing Internet destinations to Any
3 / 5
v1.5 listing results with both filters and using all changes on sources and destinations
4 / 5
Loading results
5 / 5
Listing huge APG jobs results

Release notes:

Download options : Addons script, manually here or alternate site.

Installation options: