We performed a comparison between AlgoSec and FireMon Security Manager based on real PeerSpot user reviews.
Find out in this report how the two Firewall Security Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."AlgoSec Firewall Analyser improves the firewall rules dramatically by identifying rules and objects that are not needed and consolidates rules and rule re-ordering."
"It assists in provisioning the application rapidly, which increases the organization's revenue."
"The initial setup process is excellent."
"The most valuable feature of AlgoSec is integration because it needs the be integrated with vendors' firewalls and other security products. AlgoSec has intelligent policy tuners."
"ABF is a wonderful module where you can keep the footprint for your firewall rules up-to-date, like CMDB."
"I like the auto-mapping features and configuration overview. We use this for many things, but primarily for quick reactions to security events, audit, project management, and quick operational efficiencies."
"ActiveChange integrates with your change workflow and ticketing system. For example, a change request is made to open port 8080. Then, if the guy who was supposed to implement that change mistakenly opened port 80, then ActiveChange will say, "What was approved was 8080, but what you actually opened was 80." That actually helps to fix human errors. It helps to check everything that is being done. You can go through the analysis and see changes that were made, and AlgoSec is able to alert you immediately. Whenever there is a change, notifications are sent to the administrators because it gives you that real-time alerting and change."
"We have all of the information about the firewall devices that we have at risk, either because there is a firewall policy with some open protocol that can give us security problems later, or because long-unused rules present a security hole."
"It gives us the ability to go to one place to look for potential firewall rules that are inappropriate, or which don't meet compliance. Instead of manually searching hundreds of firewalls for a policy, we can go to this one location and find the rules which are now out of compliance."
"FireMon decreases errors and misconfigurations by 10% that increase risk in our environment. That has to do a lot with the change reporting that is in place, but also with the built-in controls and custom controls that we have made. Those all decrease the errors that people naturally make on a day-to-day basis for firewall administration."
"Vendor agnostic when it comes to integrating with other product."
"It provides us with a single pane of glass for our on-prem environment, to see configuration. We have not implemented into the cloud yet. We can search for an object group and see where it lives on any firewall in the enterprise or find security rules, no matter what firewall they're on."
"FireMon is nice and provides 360-degree user views."
"The ease of use is the most valuable feature. There are a lot of products out there, but the ability to navigate through and use Firemon is very good."
"The firewall assessment feature is great."
"Firewall auditing is very important. We also use the solution for rule traffic analysis, traffic flow discovery and hidden/shadow rules within over 100 firewalls spanning five different brands."
"The product is severely lacking in vendor support."
"Due to the fact that AlgoSec's user interface is less friendly than that of other programs, it might not be appropriate for persons with little experience in security or IT."
"It needs better API integration with its third-party firewall management."
"I would say that the cases opened with AlgoSec could be solved faster or escalated sooner to the senior engineers/2nd or 3rd tier."
"Improve the dashboarding capability for FireFlow which is currently very limited in terms of presentation and customisation."
"The reporting could be a bit better."
"To be more specific, when we tried to add some devices on AlgoSec it seemed to be done but when you checked the monitor section, some device was always red. Finally, we could handle this part by installing a new software fix but AlgoSec support was weak when we tried to handle this process."
"The process to replace a decommissioned device with a new device is not straightforward."
"I ran a report and FireMon suggested that certain tools were not used. When I removed them, while it didn't bring our environment down completely, a lot of our environment started malfunctioning. Our backup system did not work, nor did other things that involve internal and external communication. We are not comfortable with what it did."
"I don't like that it comes with bugs, constant issues, and limited functionality."
"When it comes to identifying risk in our environment and prioritizing fixes, it is really about the different priorities within the organization. FireMon is not so smart that it can tell what's important to us. It's up to us to figure that out."
"We are looking for more integration with SIEM and other tools."
"We've had recurring issues managing FireMon's internal backups. Sometimes, the space allocated for the backup is full, and there is no process where it deletes files that are older than I certain date. It's just waiting for the storage to get full and then it's cleaned up. It isn't something that creates serious issues for us."
"Some of the things that you want to do in FireMon are not exactly straightforward, like creating certain reports or controls. Some of the functions could be a little more user-friendly, such as creating certain filters."
"We're working on implementing FireMon with our ticketing system service now. Having that would be an improvement."
"The initial setup can take some time, including connecting it and configuring it. It's not something that is easy for anybody to do. There is time and energy required because of the number of systems you have to configure to get it to work properly."
AlgoSec is ranked 1st in Firewall Security Management with 173 reviews while FireMon Security Manager is ranked 4th in Firewall Security Management with 53 reviews. AlgoSec is rated 9.0, while FireMon Security Manager is rated 8.2. The top reviewer of AlgoSec writes "Helps identify risks, reduce attack surfaces, and streamline policy changes". On the other hand, the top reviewer of FireMon Security Manager writes "Makes compliance much easier compared to doing it manually, and automates policy changes across environments". AlgoSec is most compared with Tufin Orchestration Suite, Skybox Security Suite, Palo Alto Networks Panorama, ManageEngine Firewall Analyzer and Fortinet FortiManager, whereas FireMon Security Manager is most compared with Tufin Orchestration Suite, Skybox Security Suite, Palo Alto Networks Panorama, ManageEngine Firewall Analyzer and RedSeal. See our AlgoSec vs. FireMon Security Manager report.
See our list of best Firewall Security Management vendors.
We monitor all Firewall Security Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
Thank you, Sunil and Carlo, for your insightful responses.
I really appreciate that and will investigate further.
Best regards,
John
It’s been too long since I evaluated AlgoSec to give some solid feedback here. I can say that mapping in FireMon is terrible if you have a complicated network, otherwise, it works pretty well.
FireMon performance- make sure you get the best server, you can break them out and put certain roles on different boxes to get a lot of expansion possibilities though it might not be necessary this depends heavily on the size of your configs. If you have 1,000 firewalls with 100 rules each no problem but a handful of firewalls with 900k+ rules can become problematic.
We have not pulled MPLS configs into the system but their protocol support (FireMon) seems top notch.
DR, well you can distribute the environment all over the place so it’s really up to you with Firemon how robust your DR is. I’ve never had a failure requiring a massive restore, even our older servers running their pre-web UI version is still running fine.
Unfortunately we chose Tufin over both those products, sorry I cannot give you a comparison on either. For us, Tufin simplifies the needs we have for Risks/Cleanup/Violations in our FW policies.
We also leverage compliance policy for best practices. You can also take advantage of the reporting functionally which suites your environment or infrastructure such as:
- New Revision
- Advance Change
- FW Modul Change
- Object Change
- Expired Rules
- Rule and Object Usage
- Policy Analysis
- Security Risk
- Rule Documentation.