RedSeal vs Tufin Orchestration Suite comparison

"RedSeal has different modules, such as the Analyzer module, which can be leveraged."

"This is the only solution in the world that gives you a digital resilience score."

"RedSeal integrates the network and gives us a visual or graphical overview of our network. If an organization is geographically dispersed, for instance, with one office in Canada and one office in the Philippines, the whole network, including all devices, is integrated into RedSeal, and you can see from where the traffic is going in and out."

"The most valuable features are network mapping and configuration."

"We use it to clean up our firewall policies, which gives us better security policy and less junk on the firewalls."

"It is a great solution. If you have all the devices and firewalls in place, the amount of details that you get along with the network topology is very good."

"We use Tufin to clean up our firewall policies. This makes it a lot easier to find out the things that are wrong."

"It offers automation capabilities that are very helpful, especially for network security orchestration and applying policies."

"All the basic functions work well."

"We are using the visibility with notifications on every firewall change and what those changes were. We have visibility to see who is making the changes, and when."

"Our engineers save quite a bit of time that was previously spent on manual processes."

"One of the things that came up this week was the ability to decommission a server, which we thought was interesting. We had a workshop recently that talked about all the things that need to be thought about when managing firewalls. People said, "A lot of times, things get forgotten when you are decommissioning a server." E.g., making sure rules are taken away and taking out the rule set. The fact that there is an automated workload for that can be helpful."

"Sometimes, it required us to refresh the configuration. When we integrated any of the configurations into the device, sometimes, it could not detect the exact picture of that device. So, we had to reset the device to see that if it was giving true-positive results or false-positive results. In some cases, we were not able to get true-positive results. There was some kind of bug in that version. Its interface is not user-friendly and needs to be improved. It takes time to understand the interface and various options. Skybox has quite a user-friendly interface. They could provide a feature for compliance audit policy if it is already not there. A compliance audit policy ensures that all configurations are based on the best practices standards, such as CIS benchmarks standard or other similar standards. It provides visibility about whether your device configuration is based on best practices or not. Usually, such a feature is provided by other solutions such as Meteor or Tenable Nessus."

"There is room for improvement in integrating the OT security part and the private 5G security part in RedSeal."

"One of the areas of concern is the GUI. It is important to our customers that the GUI looks beautiful. It's a Java Client, so you have a Java dependency."

"The dashboard should be improved to make correlating data easier to do."

"There are some missing features we'd like to see them add in the future."

"The policy browser has had trouble working. We have experienced bugs."

"Integration for Layer 2 devices could be improved because it requires manual scripting."

"The change workflow process is getting better. I wish it was a little more customizable. Right now, my biggest issue is that it wants to optimize everything we put in. Sometimes, we need a rule to be more readable, and we want it to go in a specific way. Sometimes, it's difficult to get Tufin to accept that. It wants to optimize and reduce the number of ACLs. On the compliance side, sometimes you just want more ACLs, so it's more readable for an auditor."

"I would like more enforcement. Right now. it's a lot of alerting. You see it in Tufin, but you have to go to Check Point or whatever device to make the actual action."

"It would be better if they modernized the web GUI. The web interface GUI is simple and not complicated, but it's also too old."

"At least in our environment, the dynamic learning of the topology needs improvement."

"I would like to see them get rid of the REST APIs and use something more modern."

"The pricing is based on the number of endpoints and devices, and we have seen it range from mid-five figures to low six figures."

"Our licensing fees are approximately $100,000 USD yearly."

"Price could always be better, but there are always consequences."

"The additional piece, which we are buying and doesn't include our other solution, is close to 300,000."

"It's quite an expensive solution."

"We are seeing ROI in terms of having SecureApp."

"We did look at less expensive solutions than Tufin, but being a corporation, this solution made sense."

"Our licensing costs are pretty low. We were grandfathered in, so we are at about $35,000 per year."

"I just wrote a purchase order for it. It is a $150,000 a year."