Goal

PolicyGen is an application used to automate the generation of firewall rules for the Forcepoint Next Generation Firewall. With PolicyGen, you can import a file containing network traffic data, and based on that, PolicyGen will generate suitable firewall rules. This saves time, as rules no longer need to be written manually, one by one.

Implementation

PolicyGen is built using Python and React. The application utilizes a web interface where users can upload their existing network traffic logs in JSON format.

The traffic file is inspected by the backend, which employs Python code to generate suitable firewall rules based on the provided traffic. The traffic file is then sent to the front-end web interface where users can modify, add, or delete existing firewall rules.

Once users have finished modifying the uploaded traffic file, the modified file can be exported as an XML file and saved to the local machine. Users can then upload the newly created file into the Forcepoint Next Generation Firewall interface for the firewall rules to take effect.

Future Development

The PolicyGen application could be further developed by implementing AI or machine learning techniques to enhance the firewall rule generation process, or to implement a chatbot that asks the user some questions about preferred firewall rules.