2018-07-24T14:51:00Z

What do you like most about Tufin?


Hi Everyone,

What do you like most about Tufin?

Thanks for sharing your thoughts with the community!

Guest
7676 Answers

author avatar
Top 10Real User

The most valuable feature is alerting, which lets me know when someone has made a change.

2019-12-02T03:45:00Z
author avatar
Real User

The filtering of lots of criteria is very valuable.

2019-09-12T10:00:00Z
author avatar
Real User

The automated reporting on a regular basis is helping us to be compliant with legal requirements.

2019-09-10T16:57:00Z
author avatar
Real User

The Automatic Policy Generator saves time because we are able to identify the required policy when a client doesn't know what he needs.

2019-09-10T16:40:00Z
author avatar
Top 5LeaderboardReseller

Tufin assists us in maintaining a robust view of our internal network topology.

2019-09-04T01:52:00Z
author avatar
Real User

It is a great solution. If you have all the devices and firewalls in place, the amount of details that you get along with the network topology is very good.

2019-07-18T09:23:00Z
author avatar
Real User

Our engineers are spending less time on manual processes, specifically for the reporting functionality. For doing the rule cleanup and policy analysis, it would be a nightmare to do that manually. So, it is saving our engineering teams time from not having to do manual log reviews.

2019-07-18T08:39:00Z
author avatar
Real User

We were hit by the NotPetya attack. Therefore, our whole company and all its sites were down for several months. So, you don't have an attack like that and not need something like Tufin. Other companies can prevent these attacks, or at least slow them down, by having this type of a tool. We will never go back.

2019-07-18T08:39:00Z
author avatar
Real User

Tufin has made handling firewall rule request tickets more centralized and easier to manage.

2019-07-18T08:39:00Z
author avatar
Real User

Comparing the rules and policy browser is valuable to me. It gives me the ability to pull running configs and be able to analyze them without having to go directly into the firewall.

2019-07-18T08:39:00Z
author avatar
Real User

The biggest benefit for us was the time frame to complete a ticket. It went from approximately a week and a half to two weeks down to about three days.

2019-07-18T08:39:00Z
author avatar
Real User

This solution has helped us to meet our compliance mandates. We implemented the Unified Security Policy (USP). This helped enforce what compliance requirements that we had. We have mitigated and remediated issues that have been brought forth due to that USP showing us issues.

2019-07-18T08:39:00Z
author avatar
Real User

There are a lot of benefits to using the reporting. It gives us duplicate objects, duplicate services, shadow firewall rules, and the firewall rules not needed for a given number of days or months.

2019-07-18T08:39:00Z
author avatar
Top 20Real User

We use Tufin to clean up our firewall policies because it is so fast. A report about compliance and the clean-up process used to take about one month up before. With Tufin, it takes only one day.

2019-07-18T08:39:00Z
author avatar
Real User

The best feature for me is being able to look up objects within all of our policies, because we have a little over 12,000 rules and over 30,000 objects. When one person says, 'Hey, where's my server?' I can just go to Tufin and say, 'Hey, where is that server?' and very quickly it tells you where it is, what policy it's on. That is a life saver.

2019-07-18T08:39:00Z
author avatar
Top 20Real User

In our current environment, the most valuable feature from Tufin is their Network Map.

2019-07-18T08:39:00Z
author avatar
Reseller

The change workflow process is very easy to customize. You can do a workflow however you want, so you can have an approval every single step. Or, you can remove approvals on certain steps, automating some steps.

2019-07-18T08:39:00Z
author avatar
Top 20Real User

A customer is able to submit a request for access and Tufin will automatically analyze the system to find out where the rule needs to go, and then design the rule for you.

2019-07-18T08:39:00Z
author avatar
Real User

It gives our firewall administrators visibility into the total infrastructure.

2019-07-18T08:39:00Z
author avatar
Real User

It provides a real-time sense of how the policies are configured and whether there are any shadow rules. Another great thing is that it provides greater reporting based on how the rules have been set up.

2019-07-18T08:39:00Z
author avatar
Real User

One of the biggest quick wins that we had with Tufin was cleaning up our firewall policies and rules. We cleaned out a lot of rules which helped our devices, longevity-wise, as well as speed-wise.

2019-07-18T08:39:00Z
author avatar
Real User

The visibility is huge. In order to figure out what was going on previously, we would have to pull stuff out of firewalls and put them in spreadsheets, then do sorts. Now, it's all right there in Tufin. We can write reports to look for what we need, ad hoc searches to find object groups, and know which firewalls are on. This was almost impossible to do previously.

2019-07-18T08:39:00Z
author avatar
Real User

It's hard to pick the most valuable feature. All of them are valuable, they're all critical for us... ChangeTrack obviously has a lot of very good features, like the risk analysis, the USP, and the Policy Browser.

2019-07-18T08:39:00Z
author avatar
Real User

We use this product to sharpen our change cycle. A request used to take quite a while as we did manual assessments. A lot of that is now done through SecureTrack.

2019-07-18T08:39:00Z
author avatar
Real User

This solution has helped us meet our compliance mandates. Everything is all auditable. Every change is tracked down to the person and time.

2019-07-18T08:39:00Z
author avatar
Real User

The automation piece is the most valuable feature: having SecureChange make the change on the firewalls, instead of my having to go manually make the changes on the vendor product.

2019-07-18T08:39:00Z
author avatar
Top 20Real User

This solution helps us ensure that security policy is followed across our entire hybrid network. You can have a Unified Security Policy which reaches across all networks, so if you are having a change submitted, it doesn't matter if you're enforcing it or not. You can get an alert saying, "This is a violation." That's a value-add.

2019-07-18T08:39:00Z
author avatar
Real User

It provides a comprehensive overview of what our network looks like in terms of what is allowed and what is not, then how the traffic' is flowing with the Network Topology Map.

2019-07-18T08:39:00Z
author avatar
Real User

One of the things that came up this week was the ability to decommission a server, which we thought was interesting. We had a workshop recently that talked about all the things that need to be thought about when managing firewalls. People said, "A lot of times, things get forgotten when you are decommissioning a server." E.g., making sure rules are taken away and taking out the rule set. The fact that there is an automated workload for that can be helpful.

2019-07-18T08:39:00Z
author avatar
Real User

I don't think that we were ever slow, but we can now say that changes are completed within twenty-four hours.

2019-07-17T04:21:00Z
author avatar
Top 20Real User

Tufin is the only multi-vendor firewall tool that is available, and it helps to bring everything together and report on what all of the rules are.

2019-07-17T04:21:00Z
author avatar
Real User

The APIs are the most valuable feature of this solution, as they facilitate integration with ServiceNow and other solutions.

2019-07-17T04:14:00Z
author avatar
Consultant

The most valuable feature of this solution is that it reduces both the time required and the number of errors when making changes.

2019-07-17T04:14:00Z
author avatar
Real User

The most valuable features are the GUI interface and the API.

2019-07-17T04:14:00Z
author avatar
Top 20Real User

We use Tufin to clean up our firewall policies. It benefits us, because you can run a query for whatever your cleanup criteria is, e.g., "Has it been hit in 90 days?" It displays the list, then you can see the rules right there. If you want to get rid of it (or highlight it), then it creates a ticket that goes ahead and flags them all as disabled. While you can delete them, we always disable first. Then, we have a strip that comes back, and if it's been disabled for 90 days, then the system will remove them.

2019-07-17T04:14:00Z
author avatar
Consultant

The time that we require to makes changes has been reduced from weeks to days.

2019-07-17T04:14:00Z
author avatar
Real User

The reports that this solution provides are very useful.

2019-07-17T04:14:00Z
author avatar
Real User

The most valuable feature are role and objects usage for individual objects and app usage.

2019-07-17T04:14:00Z
author avatar
Real User

Our engineers save quite a bit of time that was previously spent on manual processes.

2019-07-17T04:14:00Z
author avatar
Real User

This has helped us to better clean up and audit changes to the firewall policy.

2019-07-17T04:14:00Z
author avatar
Top 20Consultant

This solution has helped our clients because it allows them to leverage the tools so that they can actually reduce their overall expenses for the environment.

2019-07-17T04:14:00Z
author avatar
Top 20Real User

This solution has helped us with compliance because we're able to map out certain firewall rules against compliance requirements, and we're able to write reports to show us exactly what our firewalls look like in those areas.

2019-07-17T04:14:00Z
author avatar
Real User

This solution provides a more organized manner for us to track towards compliance for our PCI audits.

2019-07-17T04:14:00Z
author avatar
Real User

The most valuable feature is that it extends security entries in the firewall policies.

2019-07-17T04:14:00Z
author avatar
Top 10Real User

The most valuable feature is the reporting of our risk poster in our firewall.

2019-07-16T10:43:00Z
author avatar
Top 20Real User

I like the fact that Tufin was able to integrate with our firewalls, which include Palo Alto and FortiGate.

2019-06-05T09:07:00Z
author avatar
Real User

The change workflow process is flexible and customizable... If we have a firewall completed and we want to redo it, if we need to re-engineer a particular firewall and open a different destination, we can do that by creating a break-fix... That is one of its useful tools.

2019-05-02T07:06:00Z
author avatar
Top 20Real User

The most valuable features are the Security Risks and Best Practices reporting/Rule base cleanup.

2019-05-02T01:27:00Z
author avatar
Top 20Real User

SecureChange is the most interesting part. It all comes down to having the user request firewall access and SecureChange, based on workflows, takes care of it, sending two or three emails to the business approvers. With one click, you can automate a firewall rule.

2019-04-03T05:29:00Z
author avatar
Top 20Real User

The most valuable function is the SecureChange where it is able to automate everything from the validation of the rules to the pushing of the rules.

2019-03-14T11:34:00Z
author avatar
Real User

We have a better view of our compliance status.

2019-02-12T12:12:00Z
author avatar
Real User

The change workflow process is flexible and customizable. We have one guy who has never logged into Tufin ever in his life. He sits down and in 30 minutes had written an automation routine, then went back and changed it. He did that with no training. For me, that is a major benefit.

2019-02-12T10:29:00Z
author avatar
Real User

It has allowed us to be more efficient in our processing of firewall requests.

2019-02-12T10:29:00Z
author avatar
Real User

The visibility is very good. We have managers who are overseeing it, and they are approving things through it.

2019-02-12T10:29:00Z
author avatar
Top 20Real User

We find it to be flexible. If we have a change that needs to be done, it will go ahead and do it for all our devices, regardless of the manufacturer that we have associated with it.

2019-02-12T10:29:00Z
author avatar
Real User

The product streamlines our change management process.

2019-02-12T10:29:00Z
author avatar
Consultant

The automation because it is saving a lot of work, time, and effort required to do all of our manual work. The change impact analysis is pretty good, and with the automation, it takes care of a lot of things which we would be doing manually.

2019-02-12T10:29:00Z
author avatar
Real User

We can get reports with Tufin at anytime. We can have automated reports, even with security and compliance.

2019-02-12T10:29:00Z
author avatar
Real User

Its ability to detect changes within our firewall.

2019-02-12T10:29:00Z
author avatar
Top 20Real User

We just got done with major audits. Tufin was able to provide information to give back to people, and say, "Hey, this is what I need to do, and what we're doing."

2019-02-12T10:29:00Z
author avatar
Real User

Tufin allows our say junior guys to learn how to view policies. It gives them a tool that will help them consolidate and optimize.

2019-02-12T10:29:00Z
author avatar
Real User

One of the main things is to look at what policies haven't been hit, so we can remove those remnant policies when people come in, use it, and it's still left on the Check Point. So when a couple of users say, "This is not needed anymore." We'll remove it.

2019-02-12T10:29:00Z
author avatar
Real User

We are able to stay compliant with many of the regulations.

2019-02-12T10:29:00Z
author avatar
Real User

It provides a great visibility around the roots: Root implementing which can be done, roots that have changed, and what has been done. So, it's pretty useful when you have an audit going on.

2019-02-12T10:29:00Z
author avatar
Real User

SecureChange makes our lives easier with automation.

2019-02-12T10:29:00Z
author avatar
Top 20Real User

The solution helps us meet our compliance needs.

2019-02-12T10:29:00Z
author avatar
Top 10Real User

It has helped us to meet our compliance mandates. We have some requirements that we need to provide more visibility on the risk levels of our firewall base and Tufin helped us with that requirement.

2019-02-12T10:29:00Z
author avatar
Real User

My team uses it heavily to audit the changes made by junior engineers, going back and figuring out what they messed up, and correcting their mistakes. We generate reports for customer compliance and audits, as well as for regulatory audits.

2019-02-12T10:29:00Z
author avatar
Real User

Tufin is our audit trail for all changes. We have to be PCI compliant, and it's the tool we go to for enforcing PCI on the network side.

2019-02-12T10:29:00Z
author avatar
Real User

We've scaled it to hundreds of firewalls.

2019-02-12T10:29:00Z
author avatar
Reseller

The initial setup was straightforward.

2019-02-12T10:29:00Z
author avatar
Real User

Tufin has improved my organization with its configuration management. It has tremendously improved the operation's success and has made life easier.

2019-02-12T10:29:00Z
author avatar
Top 20Real User

The policy overview is valuable.

2019-02-12T10:09:00Z
author avatar
User

The designer gives the ability to know where to add a rule, or if the rule is already in place.

2018-09-14T07:02:00Z
author avatar
Consultant

Valuable features include a central pane of management for all the firewalls and the ability to do queries on the rules and understand in which files the rules are configured.

2018-07-30T09:01:00Z
author avatar
Consultant

We are able to discover firewall rules that are too broad and widen the security footprint.

2018-07-24T14:51:00Z
Learn what your peers think about Tufin. Get advice and tips from experienced pros sharing their opinions. Updated: April 2020.
442,986 professionals have used our research since 2012.