AlgoSec Reviews

Our primary uses for this solution are for risk and compliance, policy optimization, and change management automation.

For instance, with AlgoSec Firewall Analyzer Policy Optimization we can easily find unused rules, shadowed rules, unattached objects, and much more. This allows us to clean-up and thus improve performance.

With AlgoSec we can improve performance, simplify manageability, and tighten security. One of the quick wins is to view our device status easily, with out-of-the-box dashboards and charts. A nice capability is the reporting, with a dedicated BI tool having access to all of our key AlgoSec data.

One of the best features is the possibility to monitor all policy changes in near real time and to receive automatic alerts on changes. The AlgoSec Firewall Analyzer security rating visibility is also very useful, helping identify and mitigate firewall policy risks.

The reporting component of AlgoSec Firewall Analyzer is something that, in my view, has room for improvement.

It will be welcome in a future version the possibility of having greater granularity, for example when defining the information that we want to see in the reports, to define customized reports by group / user and to make a scheduled sent of the reports.

Being more specific, in our use case for operational teams the report to send would only be the summary of changes of all the rules of a day by Firewall. Focused, without adding unnecessary information.

Other use case is for GRC teams. The report to send should only be the summary of risk changes of a week or a month, per Firewall. Again focused, without adding unnecessary information.

Very stable, with no issues to report.

This solution has a great scalability capacity.

The customer service for this solution is ok.

Although we had not previously used any solution for Security Policy Management, AlgoSec emerged as a great solution with broad vendor support and a dynamic attitude.

The initial setup is straightforward, but also complex because of the onboarding of different vendors.

Be prepared for a long deployment and optimization time, which in the end is typical for these kinds of solutions.

Our implementation was done using a vendor and in-house mixed team with good expertise.

We have looked at the main competitors, which are FireMon and Tufin.

Enjoy Firewall Security Management and Automation.

Policy management.

It has improved the way we handle risky rules on firewalls.

Security Firewall Policy; Firewall Performance; Firewall Hardening.

The Tighten Permissive Rules Function could be better, we need more specific information about source, destination and service on the rule we will handle.

About 1 year.

Nope.

Nope.

Nope.

They have replied fast to all my concerns.

Excellent.

I used to use Firemon before but switched to AlgoSec because the AlgoSec product and User Interface are more friendly than Firemon.

The AlgoSec vendor in Vietnam is Misoft, I rate them excellent in experience and support.

The reports for the policy optimization are the product’s most valuable feature.

It provides better performance on our firewalls.

• Filtering in the reports
• Adjusting parameters for reports
• To be able to generate custom-made reports

For example, it would be nice if you could define a report to show the unused objects for a specific timeframe. Now, it’s for the whole log period. Or, another example would be: deny rules that have been adjusted in the last 90 days.

I have used it for about two years.

I have not encounter any deployment, stability or scalability issues. It runs very smoothly.

Technical support is very good, providing fast responses and good knowledge of their product.

Initial setup is very straightforward and it is easy to implement.

We did it in-house, as it’s easy to install on your own.

Just try it and you’ll see where the problems are in your firewall. You can easily request trial licenses.

The primary use case was the firewall policy cleaning and optimisation, plus compliance control and some change auditing.

AlgoSec provides a good optimization function that matches our needs related to other vendors. It allows us to clean useless rules and objects.

We are only using Firewall Analyzer, which is really good compared to other vendors. The other features (FireFlow and BusinessFlow) still aren't mature, and their licensing is expensive.

The production needs to be smarter and maybe have some AI capabilities to provide better firewall optimization and workflow integration.

The solution is more stable than in the past.

The report takes time, and the virtual appliance is a resource consumer.

The documentation is clear. The support is available but restricted to some requests that need advance service (not free).

Yes, AlgoSec provides a better solution for the firewall rule optimization that matches our production need.

The initial setup was simple, and only firewall integration could take time due to some complex interaction.

The implementation was in-house; the product is still simple to manage.

Reduced the firewall load due to a good rule table and then extended the firewall life cycle.

Compare with other products to see which one matches the best their needs.

Tufin, Skybox.

No.

AlgoSec helps us audit and track changes made to firewall rule configuration. We are able to see network administrator's activities on the firewall. The feature of backup firewall configurations as scheduled is very useful to restore firewall configurations.

It has helped us to clean up and optimize the firewall rule sets by identifying duplicate rules, covered rules, and even rules that have not received hits within a defined period. The baseline of in-built policies such as PCI DSS helps us maintain good security ratings in compliance with regulatory standards.

• Track new rules
• Modified rules and deleted rules
• The configuration backup feature is also helpful to restore configuration when the config file is corrupted.

• The font size on the Changes Summary Report is very small when reading the print out copy. 
  
• AlgoSec can look at ways to include a change management workflow process or integrate with third-party ticketing solutions. 
• Explore ways to detect unused port numbers per firewall rules.
  

The solution is very stable. Updates are also readily available upon release.

Firewall analyzer and traffic simulation based on configuration analyzer of all rules on the firewall. Implementation of new rules without the need for manual configuration of rules on all firewalls in the traffic path.

It helped to improve our automation and simplified the configuration of new access rules.

In our experience, AlgoSec need to improve the integration of firewall vendors, because at the moment they don't support all vendors that are out there. 

Algosec Firewall Analyzer has a feature called 'Implement on device' which automatically creates access rules based on your request and sends it to the appropriate device. At the moment, this feature can not be implemented on Fortigate firewalls or Juniper EX switches which act as a layer three device with ACL's etc. I mean they need to improve interoperability with more vendors in order to automate access rules modification on these unsupported yet equipment.

I've used this solution for approximately five months.

According to my colleagues who implemented it, there were some problems during the implementation. They contacted their support team who provided us with good support and we were able to get it implemented.

We had no issues with the performance.

It's been able to scale for our needs.

I wasn't involved in the original implementation.

It's an amazing product for those admins who have huge variety of firewall vendors and would like to be able to automate the implementation of new firewall rules for access across the network.

• Overly permissive rules need more visibility, and we have given the "any to any" access in some cases. 
• Looking for the solution which will provide details and description of the policy, like providing the source and destination addresses that are used from particular rules.

Policy optimisation helped reduce the policy count of the firewall. Therefore, the visibility of firewall policies improved. 

Policy tightening feature: It gives the visibilities of "any to any" rules, which source and destination are used, and the actual traffic from overly permissive rules. Therefore, we are able to tighten the policy of the firewall. 

I would like to suggest that cloud visibility feature is provided in the next release. We would be able to understand how traffic flows from the source to destination.

No.

Yes, Skybox was there, but the GUI and some of the features are missing.

The most valuable features are the risky rules analysis and network diagram representation generated from the firewall perspective.

It has helped to detect all unauthorized changes made on my firewalls. Also, this product can identify if anyone is creating dangerous rules that can severely affect the security of my organization.

One scope of improvement is to create an architecture diagram that combines intelligence from all integrated firewalls.

I have used this product for three years.

During the early implementation phase, some stability issues were experienced. However, that is somewhat stable now.

We have not encountered any scalability issues yet.

I manage the reviews aspect, not maintenance.

We were not part of the implementation team.

We evaluated the FireMon solution prior to this product.

Prior planning is required for licensing and appliance handling if the company is looking to introduce new firewalls/security devices. This tool even integrates Cisco products to track changes on core switch or primary routers/VPNs.