Firewall Security Management Features

Read what people say are the most valuable features of the solutions they use.
NetworkS6585 says in a Tufin review
Network Security at a transportation company with 10,001+ employees
* The Orchestration * The way that users can access it directly. * The change impact analysis capabilities of this solution are good. View full review »
Abasi WInt says in an AlgoSec review
Security Engineer at a manufacturing company with 1,001-5,000 employees
The feature I find most valuable is Change Detection email notifications. We are able to track real-time changes made. View full review »
Sharath K says in a Skybox Security Suite review
Sr. Consultant at a tech services company with 10,001+ employees
For us, it's more important for our firewalls, to maintain the configuration compliance, to look at duplication of rules; clean up functionalities on the firewall and compliance of the firewall. That's where it's most important. We're still looking at making use of this tool for other purposes, but it's still a work in progress at this moment. We are using Network Assurance, primarily for our devices like routers and switches. Change Manager is still a work in progress for us. While we have that module, we're still working on customizing it. It's understandable and it works well, right now. We are looking at automating that whole change management procedure using a third-party API integration along with Skybox. So that's still a work in progress at the moment. View full review »
SecArch3081 says in a FireMon review
IT Security Consultant and Platform Architect at a pharma/biotech company with 10,001+ employees
Policy test, access path analysis, and change reports. Policy test and access path analysis tools in Security Manager enable me to find existing firewall policies quickly across the enterprise, troubleshoot, or to help choose the optimal path for proposed rules. Change reports on the device dashboard show us at a glance what was changed in a particular firewall config, by date, so we can easily troubleshoot problems with implementation. View full review »
Chris Goodrich says in a FireMon review
IT Security Architect at a financial services firm with 1,001-5,000 employees
The most valuable feature is being able to review all the firewall changes in the Policy Planner, and then in the policy review feature. This solution provide us with comprehensive visibility of all our devices in a hybrid network. It is fairly straightforward to use. View full review »
reviewer1120656 says in an AlgoSec review
Information Security Specialist with 10,001+ employees
The best feature for us is the ability to automate the change requests that come through our service desk, which is done via the tool's intelligence to analyze the conditional rules. As previously mentioned, this used to be a big time sink for the guys which is now less of an issue. This means that the company can claim back valuable man-hours for other means (also showing a labour cost saving to the board). View full review »
InfoAssu7204 says in a FireMon review
Info Assurance Engineer at a aerospace/defense firm with 1,001-5,000 employees
The policy overview is the most valuable feature for each of the firewalls that we manage right now, as it reduces the complexity of the firewall rule set. View full review »
Tim Wackenhuth says in an AlgoSec review
IT Security Engineer III at a individual & family service with 10,001+ employees
I think finding the firewall's rules with the highest risk is valuable. In the old days, we had to run reports and look through rule bases trying to find risky rules and that can also lead to human error. Now we see it via AlgoSec. It also helps because we see those risks across multiple vendors. View full review »
reviewer1115961 says in an AlgoSec review
The feature we found most useful is the automation of the change process within our organization for firewalls. This feature has reduced the number of mundane tasks the firewall and IPS team undertake on a regular basis. We have been able to increase the effectiveness of the team, allowing them to prioritize more complex and business-critical tasks in a faster manner. View full review »
Mohd Majmi Mohamad says in a Tufin review
Regional OSH at Pos Malaysia Berhad
The goal was policy management and Tufin's policy management features met our requirements. It allowed us to crosscheck policies. I like the fact that Tufin was able to integrate with our firewalls, which include Palo Alto and FortiGate. View full review »
reviewer1112223 says in an AlgoSec review
User at a manufacturing company with 10,001+ employees
The most valuable features are the FW report, traffic simulation, and the FireFlow system to help manage requests. View full review »
reviewer1113381 says in an AlgoSec review
User at a manufacturing company with 10,001+ employees
I like the auto-mapping features and configuration overview. We use this for many things, but primarily for quick reactions to security events, audit, project management, and quick operational efficiencies. * Firewall rule optimization * Regulatory and baseline compliance analysis/mapping * Policy tuning * Application discovery * Automated Change management View full review »
reviewer1109571 says in an AlgoSec review
User at a retailer with 10,001+ employees
So far, we are using AlgoSec Analyzer and FireFlow. The Analyzer is more for compliance, risk, and auditing. FireFlow is more for automating rule changes and installation. Right now I am loving FireFlow for its easy to use interface. You can also get as complex as you are comfortable with. You can add email, scripts, and hooks to certain aspects of the rule creation process. View full review »
TiagoCerqueira says in an AlgoSec review
Network and Security Engineer at a financial services firm with 1,001-5,000 employees
The most valuable feature for us is AlgoSec's ability to analyze rules for risks and for performance while allowing the user to submit a change request immediately based on that assessment. Additionally, the fact that it integrates seamlessly with Ansible, as well as providing an API for the users to extend based on their own needs, is a great plus for us. View full review »
Sergio Vieira says in an AlgoSec review
One of the best features is the possibility to monitor all policy changes in near real time and to receive automatic alerts on changes. The AlgoSec Firewall Analyzer security rating visibility is also very useful, helping identify and mitigate firewall policy risks. View full review »
josemendes says in an AlgoSec review
Security Engineer at a financial services firm with 501-1,000 employees
The feature we find the most valuable is the Firewall Analyzer. This helps us know which devices are between the source and destination on the flows that we need to open for the business. The audit tools are also very important to us because we can easily have everything that needs to be presented to the security auditors. We are in the process of implementing FireFlow in our daily operation, which will make our lives even easier. The idea is to search the Firewall Analyzer for the equipment between the source and destination, and then automatically jump off to FireFlow and open a ticket. This will then automatically implement what is needed without the need to go into the Firewall itself. This will save us a lot of time and will help us to onboard junior engineers very quickly, getting them up to speed on our network and daily operation in record time. Until now we are very satisfied and surprised about the results we have been having with FireFlow, and expect to be fully working with this tool within the next three months. View full review »
Daniel James says in a FireMon review
Security Engineer at a transportation company with 10,001+ employees
The most valuable feature is the reporting capability because everything that we do is a result of our being able to query a report, based on our environment and our PCI compliance efforts. View full review »
Orlando Paulino says in a FireMon review
Information Security Analyst at a retailer with 10,001+ employees
I'm working mostly with the Security Manager part of FireMon. It gives me an eye on everything that's out there, everything that I cannot see. Because I'm not a network admin, I cannot go to a firewall itself, but at least I have FireMon so that I can go in and view everything that I want to view. And I can eliminate whatever I see that is wrong. We also use FireMon to conduct a full inventory of our assets so that we can secure everything. For example, our parent company has three retail brands. The other day, my director asked me for an inventory of all brands: every firewall, Cisco device, whatever we are using, and to give him a break down. I was able to go to FireMon, grab everything, put it in an Excel sheet, and break it down by brand and by DMZ and PCI environment as well. In addition, it's very easy to navigate. Very easy. View full review »
NetworkS2260 says in a Tufin review
Network/Security Engineer at a leisure / travel company with 51-200 employees
The topology and the config backup that we see for devices are key features we get from Tufin. The change workflow process is flexible and customizable. We went through a lot of difficulties while doing stuff, and it now provides a lot of flexibility while making changes. We can go back and implement the changes again and that is one of the things that is very flexible. If we have a firewall completed and we want to redo it, if we need to re-engineer a particular firewall and open a different destination, we can do that by creating a break-fix. A break-fix is one of the things that we can use to redo things on Tufin, itself. That is one of its useful tools. Auditing is another good tool within Tufin. The automation stuff and searching of reports are good for auditing as well. View full review »
Carlo Gardener says in a Tufin review
Security Engineer with 1,001-5,000 employees
The most valuable features are the Security Risks and Best Practices reporting/Rule base cleanup. View full review »
NetworkSad34 says in a FireMon review
Network Security Engineer- Senior at a financial services firm with 1,001-5,000 employees
I have found the reporting on unused rules and redundant rules to be the most useful to me. We run those reports and then we can come back and fix things that are bad. And overall, the reporting mechanism for anything is pretty good. We use it to baseline, to make sure our configs are accurate across all of our devices. It provides us with a single pane of glass for our on-prem environment, to see configuration. We have not implemented into the cloud yet. We can search for an object group and see where it lives on any firewall in the enterprise, or find security rules no matter what firewall they're on. We don't use the automation feature, which means we don't do a deployment of any changes, so we don't yet have a single pane for deploying all policies. We know it's capable, it's just that we don't have that function on. View full review »
Bogi Wicaksono says in an AlgoSec review
System Engineer at a tech services company with 10,001+ employees
The features that are most valuable are the interactive topology map and the traffic simulation queries. The MAP helps us by generating a network topology map and checking the routing table for every device that is connected. The traffic simulation queries help us to check the connection between two objects. This allows us to gather information about the devices pertaining to blocked traffic or services that we need to add. View full review »
Riyas Mohammed says in an AlgoSec review
The features that we have found to be most valuable are: * Risk Analyzing: Has helped to identify the risks in security network devices in a very short time, which increases and improves security overall. * Policy optimization and IPT: Has helped to identify the garbage rules and improve the device performance. Also, has assisted in removing any rules causing IPT failure. * Compliance: Helps prepare for the audit in a short time, and assists with continuous compliance. * Active push: It is capable of pushing the changes and configuration from AlgoSec itself, which decreases manual errors during implementation and configuration. View full review »
reviewer1068567 says in an AlgoSec review
* Risk Analyzing: Short time analysis and accuracy * Policy Optimization: Removing garbage policy rules and improving the performance of network devices * Compliance: For Audits in the short term View full review »
Joby George Cherian says in an AlgoSec review
The most valuable features to me were the following: * Testing network flows and optimizing firewall policies. * Obtaining regulatory and compliance metrics for audits. * Visualize complex networks using the topology maps. * Simple interface and ease of navigation. View full review »

Sign Up with Email