AlgoSec Reviews

Our first use case is the homogenization of important rules for a large number of firewall-enabled devices in our corporate network.

With one click, we have at our disposal everything we consider important and in this way we do not have to enter each device to verify the information.The AlgoSec Security Management Suite collects all of this information.

The most important thing is to have all of the information in one application. At a glance, we can see security problems and possible issues in the future. In this way, we can be proactive and solve problems before they happen.

With AlgoSec Security Management we have many advantages.

We have all of the information about the firewall devices that we have at risk, either because there is a firewall policy with some open protocol that can give us security problems later, or because long-unused rules present a security hole.

We have collected all of the alerts for each of the firewalls, which helps to identify devices that are in need of a more in-depth analysis.

The most valuable feature is the ability to compare policies with certain established and accepted configurations and values.

We have the option to generate several security reports for our firewall devices, such as what policies were created, what cluster they were created in, and which pose a risk either because they have been obsolete for a long time or because they have very specific technical specifications. Examples of this are open ports that are totally vulnerable or declared services that violate security.

All of the reports can be exported to PDF, meaning that we can send them to the different departments to study the cases and determine whether these rules are necessary. If not, then they can be eliminated to optimize the system.

It would be very helpful to have a direct link to the relevant firewall policy embedded within reports when there are warnings or risks indicated. Regardless of how serious the risk is, we could jump to the policy with a single click. In this way, the administration would be much easier and we would not have to be changing the screen every time we want to look at or modify something in our firewall. I understand that they are third-party software packages that can achieve this, but it would be more comfortable to have it integrated.

We have been using AlgoSec for two or three years.

The stability of this solution is very good.

Scalability is very good.

We have had no problem with technical support. Different incidents have been resolved without major complications.

The first solution that we used in this category was AlgoSec.

The initial setup is not complex.

Our in-house team performed the deployment with help from the vendor team. The expertise was good.

The price is within the standard of security products.

We did not evaluate other options before choosing this solution.

We use AlgoSec for automating and management of security changes to our firewall policies.

AlgoSec makes it easier to implement flow-opening requests by our users. We now have a standard procedure that everyone must follow, whereby they create an AlgoSec request for any change to the firewall policy. The product also helps us to keep track of every change that occured in the past.

AlgoSec also provides us an easy way to review the policies of all of our firewalls. We are able to perform searches for specific rules/objects on all of them at the same time, even if they are from different vendors.

Firewall Analyzer is valuable because it makes searching our existing policies so simple.

We like FireFlow because it provides an easy way to introduce flow-opening requests.

They can make some improvements to the user interface because it can be slow at times.

We have been using AlgoSec for three years.

The primary use case is for firewall rule optimization and rule tracking for changes in 80 Palo Alto firewalls. There are 30 clustered and 20 standalone in the environment. Formerly, it was Check Point with almost the same quantity.

This solution has helped the team to be updated with changes globally.

The most valuable feature is the unused rule optimization, where it clears the policy when appropriate.

The pricing structure is not good because there is no difference between a Data Center firewall for a small branch. The pricing for smaller installations should be lowered because sometimes there is just no ROI to add AlgoSec to the small branch offices with only 10 rules.

I have been using AlgoSec for seven years.

This solution looks very stable.

Our impression of the scalability is great.

I have no experience with technical support.

Other than Check Point, we did not use another solution prior to AlgoSec.

The initial setup is straightforward.

We had assistance from Bynet. They are very good professionals.

There is not so much ROI for us. We are using it basically for SOX purposes but find it useful on the way.

Pricing is great if you have a small number of large firewalls, otherwise, it does not bring ROI.

We did not evaluate other options before choosing this solution.

The primary use for AlgoSec is managing firewalls and to introduce a workflow system for requesting access through firewalls, which is fully integrated with them.

It provides faster go to market with fewer resources. In one system, users are able to request access through the firewall for business services, which can be approved by the appropriate team and can be implemented automatically by the system itself. Furthermore, users are able to track whether one particular access is blocked on any of firewalls or not, etc.

The most valuable modules are Firewall Analyzer and FireFlow. FireFlow is the workflow system, whereas Analyzer is the module responsible for tracking the configuration of firewalls, routers, switches, load balancers, etc.

There are many more useful features that cannot be listed here in a detailed manner.

I would like to be able to see what objects have the same IP, but different names in different firewalls. Since the system is able to show all of the objects for the integrated devices, it can be confusing if one particular object (eg. IP address/host) has different names in different firewalls.

I have been using AlgoSec for two years.

We have not experienced any problem with the system.

The system can be run on virtual machines, so we don't have any issue with scalability.

I would rate the technical support with five stars. :-)

We always received the necessary help quite fast, and the answers were valuable.

We didn't have a similar system before this solution.

It was not so complex and didn't take more than several days until we integrated all of the important networking devices.

It was implemented by a vendor, they had the necessary expertise.

Actually, I cannot really estimate because I am responsible for the operation of the system. I can say that we have saved some resources with the automatic implementation feature.

I propose to purchase licenses for all of the networking devices in the network, because if not all of the devices are integrated then the query of particular access cannot be discovered entirely.

We have chosen this system after evaluation (RFQ). The other competitor was Tufin.

We use this solution for Firewall Rule Management, to know who did what and why.

We use AlgoSec FireFlow to create Rules for the Firewalls with detailed information. It is used by end-users who supply the requirements for which this rule is needed, and then it goes to Security for approval.

We use AlgoSec Firewall Analyzer to get the audit reports on the firewall and to verify that change, which was approved by the Security and Network teams, is implemented in the right way.

It is a great tool for audit purposes.

Also it tells us if our firewall is compliance with PCI or not.

We use this for Compliance purposes also.

They are both integrated with each other.

This solution is helping us in the long term for managing the firewall configurations.

AlgoSec FireFlow Network Security solution is an end-to-end solution that ensures that firewall changes are approved, necessary, and implemented in the right way.

If some change is not implemented correctly then it warns you right away.

Also, while migrating from Cisco to AlgoSec, we can see the hit counts on the security rules and when the last time each rule was used. Depending on this information, we only use security rules that are more recently used when configuring new firewalls for migration.

For Palo Alto Firewalls, we have configured a lot of virtual routers as part of the network. This segmentation allows different network traffic to be isolated from a security point of view.

For us, it is a great management and audit tool.

This appliance has a lot of great features to offer.

You can buy the physical appliance or VM depending on your company requirements.

Features we like are:

1. Multi-approval AlgoSec Fireflow rule creation system. The end-user can only implement the rule if it is approved by all of the IT groups.
2. Very good integration with other vendor's products like Cisco or Palo Alto Firewalls.
3. This Appliance gives you the full Network MAP, which is obtainable from the Routing table.
4. It is easy to find whether a security policy is blocked, as well as where and by which device.

We love all the features of this device. It can be a bit expensive for small companies but they also have a VM model for that.

It seems that AlgoSec created a VSYS (Virtual system) for each virtual router name, even though our firewall has only a single VSYS. We are ok to work with this, but if this can be fixed in a future release then that will be great.

We have been using this solution for three years.

We have had no Hardware or Software issue so far with this Product.

This Appliance never went down and whenever we did any software upgrades it went very smooth. Also in our environment we had no issues due to any software bugs.

Their Software is pretty stable and bug free.

We love the scalability of this product.

This solution has Five Star technical support.

It is great to work with its Customer and Technical support team.

We used a different solution prior to this one and we had issues integrating with our new firewall vendor which was Palo Alto

The initial setup is straightforward, and we had no issues during the installation.

We performed the implementation in-house.

It seems we have recovered our money on this appliance, so it is money well spent.

Initial setup was not that hard. Vendor did this for us.

Licensing depends on how many firewalls your company has.

They have license options for small to big customers depending on the network.

Price is fair for Licensing and Product.

We evaluated a few other options, including Tufin, before choosing this solution.

My advice is to go with this product. It is easy to set up and use. It has great features and very good technical support to back it.

So far, we find ourselves below limitations on this appliance with the version we are currently running.

Overall, this is a Great security management product with good automation options to help your security teams function.

Our primary use for AlgoSec is to automate our firewall configuration. We use the AlgoSec system to remotely configure the firewalls, making our life easier.

We are in a multisite environment with plenty of firewalls for perimeter security and LAN segregation for specific proposes. This solution helped us to make the process more dynamic.

It has reduced the workload for the firewall team thanks to the API integration with our ticketing system, doing the standard type of request automatically. Before having it, we had to create a lot of standard rules that now can now be just pushed from the AlgoSec system.

The automation of the firewall rule deployment, working together with our ticketing system, is the most valuable feature of this solution. The needs as required by a user request are automatically validated and configured in the specified firewalls without any human action. This improves the firewall team's workload.

I would be nice to have a good tool for network map discovery in the GUI to make it more user friendly and be able to check and modify network maps in graphical and more intuitive way . This will improve our network overview for new deployments and troubleshooting. 

I have been using this solution for three years.

In three years, we have only had one issue with respect to stability.

When we had the issue they responded well.

We did not use another solution before AlgoSec.

We deployed this solution using our in-house team.

The reduction in workload reduces the cost in terms of human time.

We primarily use the AlgoSec Firewall Analyzer.

We have more than ten cluster firewalls and we have deployed the AlgoSec solution suite. We want to check compliance status of our devices. We also need to reduce the number of rules in each of the policies.

In our new data center, we want to automate the firewall policies.

Now, we can easily track the changes in policies. With every change, AlgoSec automatically sends an email to the IT audit team. It increases our visibility of changes in every policy. 

Every month, I use the optimizer to reduce firewall rules. In the summary tab, I can easily track the number of changes in the firewall policies.

The most valuable feature is the reporting, including the policy report and regulatory compliance reports.

In the Intelligent Policy Tuner, the tighten permissive rules tab allows us to reduce the number of rules in each policy. I can easily control, report, and reduce the rules for policies. Also in the Rules Cleanup tab, I am removing unused rules as I feel confident in deleting these types of rules.

Our Information team read Regulatory Compliance Reports that can easily track the compliance status of each device.

Cisco Firepower device support is limited in our AlgoSec system and I think AlgoSec can improve in that area. For example, in FireFlow we can easily track using the ticketing system to integrated Check Point devices. However, with Cisco Firepower devices, we couldn't integrate with them.

We have been using AlgoSec for almost six years.

We did not use another solution prior to this one.

The pricing of AlgoSec is fair.

Before purchasing AlgoSec, we implemented a PoC with each of AlgoSec, Tufin, and FireMon.

We have more than ten clusters behind our firewall. It is essential that we track the changes in policies and the compliance status of devices. AlgoSec can easily do that.

We use this solution for managing an environment with more than five thousand registered devices across firewalls, routers, balancers, and VMware. Highly critical banking environment.

We use FireFlow as our primary ticket management tool.

With AlgoSec, it was able to conduct the environment so that it was possible to get more accurate and fast information about the changes that the environment went through.

It has reduced the time for firewall rule requests to be implemented in the environment.

The most valuable feature is traffic simulation because, with this function, it has become more practical to know if something is released or blocked in my environment.

IPT is valuable because this function is of great help to have a more effective security policy.

I believe Active Change needs to be improved because not all products are supported, and some functions cannot be implemented by Active Change either.

Technical support needs to find solutions more quickly.

Active Change could implement routes in Firewalls, it should also be able to perform the creation of APP control and URL filter rules.

We have been using this solution for six years.

In general, it is a stable product. We have rarely had a problem that resulted in the total unavailability of the solution.

AlgoSec requires a large amount of processing power to perform its tasks, making it a piece of equipment that always requires monitoring to be optimally optimized.

Some troubleshooting took months to resolve. So, I think we have to improve this point.

I used Nipper and FireMon, but I started using AlgoSec due to the great recommendations I received.

The architecture was defined with one master, four slaves, and one remote.

Our internal team handled the deployment.

I do not have many details of this commercial part.

I evaluated FireMon and Nipper in addition to this solution.

Many users have the tool but don't use it with everything it can offer. What I recommend is that you explore all of the features of the product.