RedSeal vs Tufin Orchestration Suite comparison

"RedSeal has different modules, such as the Analyzer module, which can be leveraged."

"This is the only solution in the world that gives you a digital resilience score."

"The most valuable features are network mapping and configuration."

"RedSeal integrates the network and gives us a visual or graphical overview of our network. If an organization is geographically dispersed, for instance, with one office in Canada and one office in the Philippines, the whole network, including all devices, is integrated into RedSeal, and you can see from where the traffic is going in and out."

"The most valuable feature of this solution is that it reduces both the time required and the number of errors when making changes."

"It provides very good reports. It can easily integrate with multiple firewalls, such as Cisco, Juniper, Palo Alto, and Checkpoint. We can push a policy from Tufin to a firewall, which is a very good feature. We can monitor all access rules and the operating system of a firewall."

"We've scaled it to hundreds of firewalls."

"We can check and analyze the current status of our firewall rules."

"I like the deployment and management of this solution."

"The automated reporting on a regular basis is helping us to be compliant with legal requirements."

"We use Tufin to clean up our firewall policies. It benefits us, because you can run a query for whatever your cleanup criteria is, e.g., "Has it been hit in 90 days?" It displays the list, then you can see the rules right there. If you want to get rid of it (or highlight it), then it creates a ticket that goes ahead and flags them all as disabled. While you can delete them, we always disable first. Then, we have a strip that comes back, and if it's been disabled for 90 days, then the system will remove them."

"The most valuable feature are role and objects usage for individual objects and app usage."

"Sometimes, it required us to refresh the configuration. When we integrated any of the configurations into the device, sometimes, it could not detect the exact picture of that device. So, we had to reset the device to see that if it was giving true-positive results or false-positive results. In some cases, we were not able to get true-positive results. There was some kind of bug in that version. Its interface is not user-friendly and needs to be improved. It takes time to understand the interface and various options. Skybox has quite a user-friendly interface. They could provide a feature for compliance audit policy if it is already not there. A compliance audit policy ensures that all configurations are based on the best practices standards, such as CIS benchmarks standard or other similar standards. It provides visibility about whether your device configuration is based on best practices or not. Usually, such a feature is provided by other solutions such as Meteor or Tenable Nessus."

"There is room for improvement in integrating the OT security part and the private 5G security part in RedSeal."

"One of the areas of concern is the GUI. It is important to our customers that the GUI looks beautiful. It's a Java Client, so you have a Java dependency."

"The dashboard should be improved to make correlating data easier to do."

"I don't get the full visibility. There are a lot of improvements which can be done in terms of visibility."

"We actually had a key issue, which was a bug, that the development team didn't want to fix. We escalated it, then it got fixed. So, the management level seems very responsive at least, but at a support level, they are just regular support people and not outstanding."

"I would like to see AI elements included with this solution."

"The key area for improvement is the integration to F5. One of the things that we encountered with another customer is that there were some limitations when we tried to migrate policies from F5 into Tufin."

"One of the areas that I've had challenges with is making complicated reports."

"There's a need for an improved network map."

"They are a little bit behind on some of their support for the Palo Alto firewall platform. I'd like to see that catch up, specifically around importing certain objects."

"I haven't seen the cloud integration yet, and I would like to see if we could audit the cloud firewalls, like the cloud-native, Azure, and Amazon. That would be nice. You want one tool to do everything. I don't want to use another tool, or manually go and audit the cloud firewalls."

"The pricing is based on the number of endpoints and devices, and we have seen it range from mid-five figures to low six figures."

"Pricing played a big part here... The customer had evaluated other products but, due to price as well as support, they chose Tufin."

"The solution is more reasonably priced than its competitors."

"This solution helps us reduce the time it takes us to make changes. We're probably saving time by 25%."

"It is expensive, but as compared to other players, it's more or less okay. Their pricing is not very transparent. This is my biggest point regarding Tufin. I've never seen a price list or something like that. It's always individual, and in many cases, it's very confusing to know what is the base and what is the price."

"There is no issue with the pricing because we used a VM. That kept the cost low, as compared to an appliance."

"Our licensing costs are three million total and then we pay for maintenance, which is an additional cost for three years."

"I just wrote a purchase order for it. It is a $150,000 a year."

"It's not that expensive, except for Security Groups. For us, just the Security Groups were about half of the total price. The total was about €500,000 a year, of which €200,000 was for Security Groups."