AlgoSec Reviews

* Network map - to see how firewalls and routers are connected.

* Traffic simulation - to emulate traffic through the rule-base and see if you need to open additional ports/services.

* FireFlow - to order new firewall openings.

* Less overhead on the network security department since the user can verify the rules themselves.

* Risk profiles helps find disallowed traffic.

* Policy cleanup feature is really good for removing unused rules, etc.

* More unified UI

Since 2013

AlgoSec AFA provides visibility and enhancement opportunities on the firewalls. You can observe risk trends, regulatory and baseline compliance, as well as live changes and change history.

AlgoSec improved our firewall visibility and related control points.

Needs continuous improvements in all areas since firewall vendors are improving their products and the IT security industry is definitely improving itself.

3 years

Deployment is easy, no issues at all.

No issues so far.

8/10

8/10

No previous solution

Initial setup and deployment was straightforward.

We got help from a partner, 8/10

We evaluated two other vendors in addition to AlgoSec.

The firewall analyzer allows for a quick and consistent method of reviewing your firewalls ruleset for security, compliance, and peace of mind. The ability to review and understand your firewall topology, run reports and have the ability for practitioners and auditors to review our security posture, gives us a sense of calm within this area of security.

Adding AlgoSec as a process into our network, compliance, security, and audit teams allowed for quick turnaround on any issues that arise regarding security rulesets. We often find these issues before they are pointed out to us, which leads to a quicker turnaround from compliance, but more importantly from a security mindset. This tool is used as part of the M&A process to analyze any new companies looking to incorporate our network. It's become one of the indispensable products we can't live without.

I would say cloud is an area for improvement, but AlgoSec in is that market now, too. I do want to see, however, the ability to set up an instance within the cloud instead of having to use physical appliances.

I've had no issues with deployment.

It's been stable for me.

It's able to hit all the devices that I've put it up against and it was able to find rules that put our organization at risk.

The technical support is standard. They do a good job and understand the product.

It's head and shoulders above all the competitors in the field. They're the ones pushing the boundaries of the market.

• It can identify the policy rules in the firewall that have a high risk and could have an impact on network infrastructure.
• It suggests solutions to these issues, and provide compliance reports by standardizing PCI-DSS, ISO 27001, SOX and more.
• It can monitor policy changes, and who made those changes.
• It generates a topology of the network when it has scanned the network.
• Using the network mapping, it identifies bottlenecks.

We have improved the performance of the firewall to handle requests and responses to/from clients as reduces the number of policies that are needed when the network is exposed to high risk.

They need to improve auditing of IP tables, as only monitoring them does not reduce their vulnerabilities.

I used it for nine to ten months.

No issues encountered.

It is quite stable for 24-hour network monitoring.

There is no problem in the process of scanning and monitoring firewalls, and IP tables in
considerable quantities.

8/10 as they were quite fast in responding to my issues.

10/10 as the technical support provide assistance if there is a problem via both email and telephone.

I have not used a different solution previously.

The initial set up is a bit complicated, because you have to open special ports in the firewall, and give open access to be able to read the configuration topology mapping in the firewall. This means that the process of scanning and monitoring AlgoSec can run smoothly.
Unlike the case with the initial setup for monitoring IP tables, you must use the root access serve (sudo su) so that the process of scanning and monitoring AFA could run smoothly.

We implemented this in-house.

The advantage is that it can really optimise configuring firewall policy rules, and can
reduce the configuration that is vulnerable. It can provide solutions to make policy rules more simple and efficient.

If you want to conduct an audit of firewall and want to optimize the configuration, you can try and use AlgoSec.

I didn't evaluate other options.

Be patient and careful when doing the initial configuration of the firewall with AFA, but after the process is completed, everything has to run smoothly.

An example screenshot of network mapping results from AFA. Network mapping can
be useful also to detect if there is a connection network traffic is interrupted and can assist in documenting the topology that is owned.

The following screenshot shows an example of the policy rules that need to optimized, so you can improve the performance of firewall and its security level.

The following screenshot shows the result of scanning AFA reports that compliance with ISO 27001.

It provides us with a trail of changes. It also has an optimization advisor.

The audits for the firewalls are now straightforward.

The regulatory compliance rules.

I've been using it since March 2015, and I'm responsible for the deployment and administration of it.

No issues encountered.

No issues encountered.

No issues encountered.

It's very good, nothing to complain about.

It's excellent, their support is fast and very competent.

I didn't use a similar solution previously.

It was straightforward.

We used a vendor team who covered all the aspects, and requirements, of the product.

No other options were evaluated.

• Audit reports
• Firewall rule optimization

There are hundreds of firewall administrators, and each one of them creates rules. Optimizing these rules and being able to make them more logical is a key feature of AlgoSec.

The reporting features need to be improved.

I've used it for one year.

We did encounter an issue with integrating it with the firewall, but we then found that the firewall was the culprit not AlgoSec.

No issues encountered.

We need to carefully plan scaling AlgoSec.

7/10.

9/10.

This is my first implementation.

There were guides available, and the more you read, the easier it becomes.

I am am a vendor. I work at Dimension Data as a network engineer who deploys these solutions.

We also looked at Tufin.

It's a very flexible product, and you can make the most from the available features on the box.

• Firewall analyzer
• Change management system

• Change management system
• 3D view of your firewall configuration
• Tool intelligence, highly useful for information security
• Design point-of-view

I've used it for two years.

I wasn't involved in the deployment; I just use it as a firewall engineer.

Sometimes due to server database size, the disk gets exhausted and then there is slowness over the internet.

I haven't been involved with contacting AlgoSec.

I haven't been involved with contacting AlgoSec.

I haven't used any other solution.

I was not the one who made the decision, but I have been supporting for customer.

• The AFA provides some good nifty features which ultimately yields better optimization of firewall policies.
• It helps in the clean up and optimization of our monitored firewall.
• Under the optimization report, one can generate various parameter reports such as unused rules, unattached objects, etc.
• Reviewing and taking proper actions for the better performance of the firewall.
• It helps to identify and mitigate risky firewall and network access rules.
• Using the network mapping, it identifies bottlenecks.
  

It has helped us better manage the rules and policies of the firewall.

It needs to improve in all areas.

I have used it for two years,

No issues encountered.

No issues encountered.

No issues encountered.

7/10

9/10

There was no previous solution in place.

It was straightforward on an appliance.

I helped implement it as part of a vendor team.

It's a bit expensive.

No other products were evaluated.

No other products were evaluated.