AlgoSec Reviews

We recommend the AlgoSec Firewall Security Management solution to our customers in order to help them with firewall policy application and optimization.

This solution helps all of our customers. They are network engineers and network administrators who need to recertify expired firewall rules, as well as clean and remove all of the rules that the customer doesn't need in their devices.

The most valuable feature is the ability to deploy new rules in all of the firewalls included in the environment at one time. This automates the process instead of installing one rule or one device at a time.

The UX control panel is in need of improvement.

I have used AlgoSec for a long time and with many customers.

Our primary uses for this solution are for risk and compliance, policy optimization, and change management automation.

For instance, with AlgoSec Firewall Analyzer Policy Optimization we can easily find unused rules, shadowed rules, unattached objects, and much more. This allows us to clean-up and thus improve performance.

With AlgoSec we can improve performance, simplify manageability, and tighten security. One of the quick wins is to view our device status easily, with out-of-the-box dashboards and charts. A nice capability is the reporting, with a dedicated BI tool having access to all of our key AlgoSec data.

One of the best features is the possibility to monitor all policy changes in near real time and to receive automatic alerts on changes. The AlgoSec Firewall Analyzer security rating visibility is also very useful, helping identify and mitigate firewall policy risks.

The reporting component of AlgoSec Firewall Analyzer is something that, in my view, has room for improvement.

It will be welcome in a future version the possibility of having greater granularity, for example when defining the information that we want to see in the reports, to define customized reports by group / user and to make a scheduled sent of the reports.

Being more specific, in our use case for operational teams the report to send would only be the summary of changes of all the rules of a day by Firewall. Focused, without adding unnecessary information.

Other use case is for GRC teams. The report to send should only be the summary of risk changes of a week or a month, per Firewall. Again focused, without adding unnecessary information.

Very stable, with no issues to report.

This solution has a great scalability capacity.

The customer service for this solution is ok.

Although we had not previously used any solution for Security Policy Management, AlgoSec emerged as a great solution with broad vendor support and a dynamic attitude.

The initial setup is straightforward, but also complex because of the onboarding of different vendors.

Be prepared for a long deployment and optimization time, which in the end is typical for these kinds of solutions.

Our implementation was done using a vendor and in-house mixed team with good expertise.

We have looked at the main competitors, which are FireMon and Tufin.

Enjoy Firewall Security Management and Automation.

AlgoSec helps us audit and track changes made to firewall rule configuration. We are able to see network administrator's activities on the firewall. The feature of backup firewall configurations as scheduled is very useful to restore firewall configurations.

It has helped us to clean up and optimize the firewall rule sets by identifying duplicate rules, covered rules, and even rules that have not received hits within a defined period. The baseline of in-built policies such as PCI DSS helps us maintain good security ratings in compliance with regulatory standards.

• Track new rules
• Modified rules and deleted rules
• The configuration backup feature is also helpful to restore configuration when the config file is corrupted.

• The font size on the Changes Summary Report is very small when reading the print out copy. 
  
• AlgoSec can look at ways to include a change management workflow process or integrate with third-party ticketing solutions. 
• Explore ways to detect unused port numbers per firewall rules.
  

The solution is very stable. Updates are also readily available upon release.

Firewall analyzer and traffic simulation based on configuration analyzer of all rules on the firewall. Implementation of new rules without the need for manual configuration of rules on all firewalls in the traffic path.

It helped to improve our automation and simplified the configuration of new access rules.

In our experience, AlgoSec need to improve the integration of firewall vendors, because at the moment they don't support all vendors that are out there. 

Algosec Firewall Analyzer has a feature called 'Implement on device' which automatically creates access rules based on your request and sends it to the appropriate device. At the moment, this feature can not be implemented on Fortigate firewalls or Juniper EX switches which act as a layer three device with ACL's etc. I mean they need to improve interoperability with more vendors in order to automate access rules modification on these unsupported yet equipment.

I've used this solution for approximately five months.

According to my colleagues who implemented it, there were some problems during the implementation. They contacted their support team who provided us with good support and we were able to get it implemented.

We had no issues with the performance.

It's been able to scale for our needs.

I wasn't involved in the original implementation.

It's an amazing product for those admins who have huge variety of firewall vendors and would like to be able to automate the implementation of new firewall rules for access across the network.

The reports for the policy optimization are the product’s most valuable feature.

It provides better performance on our firewalls.

• Filtering in the reports
• Adjusting parameters for reports
• To be able to generate custom-made reports

For example, it would be nice if you could define a report to show the unused objects for a specific timeframe. Now, it’s for the whole log period. Or, another example would be: deny rules that have been adjusted in the last 90 days.

I have used it for about two years.

I have not encounter any deployment, stability or scalability issues. It runs very smoothly.

Technical support is very good, providing fast responses and good knowledge of their product.

Initial setup is very straightforward and it is easy to implement.

We did it in-house, as it’s easy to install on your own.

Just try it and you’ll see where the problems are in your firewall. You can easily request trial licenses.

We use AlgoSec for automating and management of security changes to our firewall policies.

AlgoSec makes it easier to implement flow-opening requests by our users. We now have a standard procedure that everyone must follow, whereby they create an AlgoSec request for any change to the firewall policy. The product also helps us to keep track of every change that occured in the past.

AlgoSec also provides us an easy way to review the policies of all of our firewalls. We are able to perform searches for specific rules/objects on all of them at the same time, even if they are from different vendors.

Firewall Analyzer is valuable because it makes searching our existing policies so simple.

We like FireFlow because it provides an easy way to introduce flow-opening requests.

They can make some improvements to the user interface because it can be slow at times.

We have been using AlgoSec for three years.

• Overly permissive rules need more visibility, and we have given the "any to any" access in some cases. 
• Looking for the solution which will provide details and description of the policy, like providing the source and destination addresses that are used from particular rules.

Policy optimisation helped reduce the policy count of the firewall. Therefore, the visibility of firewall policies improved. 

Policy tightening feature: It gives the visibilities of "any to any" rules, which source and destination are used, and the actual traffic from overly permissive rules. Therefore, we are able to tighten the policy of the firewall. 

I would like to suggest that cloud visibility feature is provided in the next release. We would be able to understand how traffic flows from the source to destination.

No.

Yes, Skybox was there, but the GUI and some of the features are missing.

The most valuable features are the risky rules analysis and network diagram representation generated from the firewall perspective.

It has helped to detect all unauthorized changes made on my firewalls. Also, this product can identify if anyone is creating dangerous rules that can severely affect the security of my organization.

One scope of improvement is to create an architecture diagram that combines intelligence from all integrated firewalls.

I have used this product for three years.

During the early implementation phase, some stability issues were experienced. However, that is somewhat stable now.

We have not encountered any scalability issues yet.

I manage the reviews aspect, not maintenance.

We were not part of the implementation team.

We evaluated the FireMon solution prior to this product.

Prior planning is required for licensing and appliance handling if the company is looking to introduce new firewalls/security devices. This tool even integrates Cisco products to track changes on core switch or primary routers/VPNs.