We performed a comparison between AlgoSec and FireMon Security Manager based on real PeerSpot user reviews.
Find out in this report how the two Firewall Security Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
"It gives control and visibility to the end users."
"We need less time to identify any risks in our firewalls, as we can detect changes in real-time."
"ActiveChange integrates with your change workflow and ticketing system. For example, a change request is made to open port 8080. Then, if the guy who was supposed to implement that change mistakenly opened port 80, then ActiveChange will say, "What was approved was 8080, but what you actually opened was 80." That actually helps to fix human errors. It helps to check everything that is being done. You can go through the analysis and see changes that were made, and AlgoSec is able to alert you immediately. Whenever there is a change, notifications are sent to the administrators because it gives you that real-time alerting and change."
"The most valuable feature is traffic simulation because, with this function, it has become more practical to know if something is released or blocked in my environment."
"I found that for policy optimization it does a great job."
"We use it for global firewall rules management to ensure global policies are applied to all regional firewalls, provide auditing and compliance."
"Reporting helps us with deliverables, areas of focus for improvement, and much more."
"The most valuable feature is the ability to deploy new rules in all of the firewalls included in the environment at one time."
"The automation that the platform provides to create tickets reduces human error and more generally, reduces the operational overhead."
"The most valuable features are Policy Optimizer and Firewall Manager for different brands of firewall."
"The most valuable feature is the Firewall reviews for our company compliance."
"We also use the solution’s SASE integration capabilities to extend security policy management for cloud firewall management. It helps in creating one consistent rule across multiple platforms and it improves accuracy."
"The SQL language is convenient to use. It allows us to process a bunch of criteria very quickly and narrows things down if there is an issue with the firewall. It's easy to do that with SQL queries."
"What I like about FireMon is the ability to track changes made by network engineers on the network."
"Firewall auditing is very important. We also use the solution for rule traffic analysis, traffic flow discovery and hidden/shadow rules within over 100 firewalls spanning five different brands."
"For the cleanup of firewall rules, it performs really well for us. We utilize it in our regular rule cleanup tasks, several times a year. FireMon is our primary tool when doing that, either by going through its out-of-the-box compliance rules or using it to search for certain things in our rules that we want to prune from our firewalls."
"To be more specific, when we tried to add some devices on AlgoSec it seemed to be done but when you checked the monitor section, some device was always red. Finally, we could handle this part by installing a new software fix but AlgoSec support was weak when we tried to handle this process."
"I believe Active Change needs to be improved because not all products are supported, and some functions cannot be implemented by Active Change either."
"In the VMware platform, sometimes the application is frozen and we have to reload the machine."
"The Firewall Analyzer module can be improved to implement a vulnerability management solution, or they can link Firewall Analyzer with a vulnerability management solution in order to get a better overview of what's going on in our network in terms of vulnerabilities."
"A simple tutorial about the initial configuration on Youtube could provide a lot of help."
"I would rate the support as six or seven out of 10."
"The reporting could be a bit better."
"We have a complaint about the compliance check, in that sometimes we want to keep rules rather than merge them."
"A phone app would be nice. This is the reason why it is not perfect yet."
"When it comes to identifying risk in our environment and prioritizing fixes, it is really about the different priorities within the organization. FireMon is not so smart that it can tell what's important to us. It's up to us to figure that out."
"It comes as a Linux appliance on a server and we're not a Linux shop, we're more of a Windows shop. It would be great if they could automate or integrate the backups into it and other things through their GUI interface, just to make the management of Linux a little more transparent."
"We're working on implementing FireMon with our ticketing system service now. Having that would be an improvement."
"The AWS integration is still not mature for us to use. It is just not ready for our use case for AWS connectivity. Therefore, it does not provide us with a single pane of glass for our cloud environments, because we can't manage our cloud environment with the tool."
"When it comes to documentation, they need to start putting together a basic command manual. With Cisco, you can look up a command and it gives you examples of three or four different ways that command can be used. It tells you how to put it into the GUI and the CLI. FireMon does need to start doing that."
"FireMon could be easier to use and flexibility regarding reporting could be improved."
"The current health and monitoring of the devices is atrocious... Imagine you have a list of 200 devices, and you can grade each of those devices as either green, yellow, or red. However, there might be three different reasons for you to go to red, or eight different reasons to go to yellow, and all of those things could be combined... Out of all those categories, I only find one or two of them that are, perhaps, pertinent."
AlgoSec is ranked 1st in Firewall Security Management with 173 reviews while FireMon Security Manager is ranked 4th in Firewall Security Management with 53 reviews. AlgoSec is rated 9.0, while FireMon Security Manager is rated 8.2. The top reviewer of AlgoSec writes "Helps identify risks, reduce attack surfaces, and streamline policy changes". On the other hand, the top reviewer of FireMon Security Manager writes "Makes compliance much easier compared to doing it manually, and automates policy changes across environments". AlgoSec is most compared with Tufin Orchestration Suite, Skybox Security Suite, Palo Alto Networks Panorama, ManageEngine Firewall Analyzer and Fortinet FortiManager, whereas FireMon Security Manager is most compared with Tufin Orchestration Suite, Skybox Security Suite, Palo Alto Networks Panorama, ManageEngine Firewall Analyzer and RedSeal. See our AlgoSec vs. FireMon Security Manager report.
See our list of best Firewall Security Management vendors.
We monitor all Firewall Security Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
Thank you, Sunil and Carlo, for your insightful responses.
I really appreciate that and will investigate further.
Best regards,
John
It’s been too long since I evaluated AlgoSec to give some solid feedback here. I can say that mapping in FireMon is terrible if you have a complicated network, otherwise, it works pretty well.
FireMon performance- make sure you get the best server, you can break them out and put certain roles on different boxes to get a lot of expansion possibilities though it might not be necessary this depends heavily on the size of your configs. If you have 1,000 firewalls with 100 rules each no problem but a handful of firewalls with 900k+ rules can become problematic.
We have not pulled MPLS configs into the system but their protocol support (FireMon) seems top notch.
DR, well you can distribute the environment all over the place so it’s really up to you with Firemon how robust your DR is. I’ve never had a failure requiring a massive restore, even our older servers running their pre-web UI version is still running fine.
Unfortunately we chose Tufin over both those products, sorry I cannot give you a comparison on either. For us, Tufin simplifies the needs we have for Risks/Cleanup/Violations in our FW policies.
We also leverage compliance policy for best practices. You can also take advantage of the reporting functionally which suites your environment or infrastructure such as:
- New Revision
- Advance Change
- FW Modul Change
- Object Change
- Expired Rules
- Rule and Object Usage
- Policy Analysis
- Security Risk
- Rule Documentation.