AlgoSec Reviews

Our primary use case started as policy optimization in a multi-vendor firewall environment. Now, our primary use case is giving access to firewall policies for development teams and infrastructure specialists. We are receiving better change requests based on actual requirements and less requests for access which already exists.

Over time, firewall vendors have added features, such as rule counters, that AlgoSec traditionally has offered. However, AlgoSec continues to add capabilities that firewall vendors simply cannot provide. We have reduced the attack surface of risky rules, improved our compliance scores, and streamlined our firewall change flow all thanks to AlgoSec Firewall Analyzer.

The ease of use and "one click" reports are very manager friendly. The policy browser is a fast, efficient way to find existing access, especially when granted via membership of a group or subnet. The ability to painlessly click through and navigate group objects ("what's in this object?") to filter.

The Flash to HTML5 rewrite has been bumpy. However, as a security professional, I appreciate the improvement in the product.

I am optimistic about possibly moving beyond AFA to other products.

R&D patches to address issues that I have encountered have been timely and effective.

Firewall and Compliance.  We use the product to support the firewall review process and risk of over 400 firewalls

We are able to quickly review 100's of firewalls and stay compliant.  The product has been invaluable to our information security department

Policy review and compliance.  We are now using the AlgoSec FireFlow feature to help us automate the firewall ACL submission process and implementation of firewall rules.

Product has improved quite a bite in the years we have been using the product. We look forward to completing the AlgoSec Fireflow implementation and piloting the Business flow product.  AlgoSec continues to improve their product every year. 

I mainly use AlgoSec for policy change management and to intercept dangerous changes to firewall rules.

In the past, policy changes were applied, but not always with the correct approval. Because of this, we ended up with huge holes in the rule base.

Multi-vendor feature in a multi-vendor environment is a must. Ensures changes adhere to internal and regulatory standards.

Today, we don't dare push the new policy automatically, We don't have confidence in this feature.

No.

Yes, Tufin.

• Centrally manage firewall flow requests
• Approval/implementation and validation
• We can easily make our firewall flow change requests using the web interface.

It would be great if the product could be more simplified when defining the rules.

Documentation could be added to the tools, then generate documentation and send it to the relevant people.

• Workflow: Users utilize this tool to make their change requests, then once it is approved by a security team assessment, the network team will implement the changes.
• Troubleshooting: Tracks the flow and sees where it is blocked.

Automate the change documentation in MS Word format. Therefore, we can customize it, if needed.

This solution was implemented to provide risk analyse, audit on rules, and changes, as well as giving visibility to the application or project manager on firewall rules that are linked to their servers for a massive datacenter migration. 

For a massive migration, it permits project/application owners to estimate and anticipate changes which are needed autonomously and only involve the security administrator for implementation of the rules. This permits us to save a lot of time and make some firewall policy clean up. Then, when we add firewall change requests to management through this tool, it decreases the time for design and implementation significantly.

The Firewall Analyser feature is the most important and valuable part of this tool. This provides quick and simple visibility on the firewall's risk assessment in regards to compliance's referential that can be also customised to fit our organisation's requirements. 

Improve the dashboarding capability for FireFlow which is currently very limited in terms of presentation and customisation. 

Not really. Sometime after the version upgrade, a few bugs appeared. 

Not yet. 

At the beginning, support was good. 

Now as support is composed of several levels, default standard support at Level 1 is to answer by upgrading to the latest released version, if you are not using it yet.

We did not have such a tool before installing AlgoSec for a firewall policy audit with reports. We had a homemade tool for change management.  

Find a good integrator.

We went through a vendor team. His expertise was medium.

We evaluated differents solution when launching the project, like Tufin. This one was the most mature.

We use AlgoSec FireFlow and AFA modules for risk analysis, audit, and change management to enforce appropriate security compliance.

It has streamlined our processes for access and firewall management. It is used by all the IT user community internally and by our service provider who is in charge of our IT run activities.

AFA and FireFlow modules are the one that we use. 

• AFA provides project teams with a simplified way to obtain the status on their current rule set. 
• Fireflow is used for our change management process and is linked to our CP FW. 

Integration to cloud ITSM tools, such ServiceNow.

Be able to automatically analyze application traffic with machine learning capabilities and propose simplification for rule set optimization.

• Templates
• For baselines PCI-DSS

We now have baseline and rules checking.

It would be nice if it was more variable when checking virtual domain baseline in the same way as Fortigate's firewalls do.

I've used it for one and a half years.

We had issues with the clusters.

It's slow to synchronize a database that is not synchronized.

No issues encountered.

It's good.

It's good.

No previous solution was used.

There were some issues when setting up the cluster and getting it to synchronize properly.

I did it myself.

You need to be able to script and have skills using Linux.