Skip to main content
TrustRadius
FireMon

FireMon

Overview

What is FireMon?

FireMon is a real-time security policy management solution built for today’s complex multi-vendor, enterprise environments. Supporting the latest firewall and policy enforcement technologies spanning on-premises networks to the cloud, FireMon delivers visibility and control across the entire IT landscape to…

Read more
Recent Reviews

FireMon Firewall Analyzer Review

9 out of 10
March 01, 2022
We used FireMon as a firewall analyzer of internal and external perimeters. We were able to gather relevant tcpdumps instead of looking …
Continue reading

Solid and reliable

9 out of 10
December 07, 2021
Incentivized
FireMon is a great product that compiles information for security and networking issues and is easy to use. Support is some of the best in …
Continue reading
Read all reviews

Awards

Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards

Reviewer Pros & Cons

View all pros & cons
Return to navigation

Pricing

View all pricing
N/A
Unavailable

What is FireMon?

FireMon is a real-time security policy management solution built for today’s complex multi-vendor, enterprise environments. Supporting the latest firewall and policy enforcement technologies spanning on-premises networks to the cloud, FireMon delivers visibility and control across the…

Entry-level set up fee?

  • Setup fee optional
For the latest information on pricing, visithttps://www.firemon.com/request-a…

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting/Integration Services

Would you like us to let the vendor know that you want pricing?

23 people also want pricing

Alternatives Pricing

What is ManageEngine ADAudit Plus?

ADAudit Plus offers real-time monitoring, user and entity behaviour analytics, and change audit reports that helps users keep AD and IT infrastructure secure and compliant.Track all changes to Windows AD objects including users, groups, computers, GPOs, and OUs.Achieve hybrid AD monitoring with a…

What is Perimeter 81?

Perimeter 81 is a Zero Trust Network as a Service from the company of the same name in Tel Aviv, designed to simplify secure network, cloud and application access for the modern and distributed workforce.

Return to navigation

Product Details

What is FireMon?

FireMon is a real-time security policy management solution built for today’s complex multi-vendor, enterprise environments.

Supporting the latest firewall and policy enforcement technologies spanning on-premises networks to the cloud, FireMon delivers visibility and control across the entire IT landscape to automate policy changes, meet compliance standards, to minimize policy-related risk.

Since creating their policy management solution in 2004, FireMon states they've helped more than 1,700 enterprises in nearly 70 countries secure their networks.

FireMon provides solutions that extend and integrate policy management with today’s latest technologies including SD-WAN, SASE, XDR, and SOAR.

The vendor states FireMon customers experience up to 90% improvements in network security policy efficiency while eliminating common misconfigurations which lead to breaches and compliance violations.

FireMon Features

  • Supported: KPI Dashboards: See the network at a glance with analysis, trending and key performance indicator widgets on a customizable dashboard.
  • Supported: Traffic Flow Analysis: Monitor network traffic behavior – down to the application level – to isolate overly permissive configurations.
  • Supported: Access Path Analysis: Trace every available access path across the network and visualize relationships between network devices to identify risk access points.
  • Supported: Network Mapping: Visualize and interact with highly complex network security environments or segmentations.
  • Supported: Change Detection & Reporting: Isolate, document and alert on every ongoing change implemented throughout an existing firewall policies.
  • Supported: Assessments & Controls: Define and employ unique security controls for customized, repeatable analysis and reporting on firewall policies.

FireMon Videos

Improve Security Operations. Improve Security Outcomes.
FireMon: Enforce Compliance
FireMon: Manage Change

FireMon Integrations

FireMon Technical Details

Deployment TypesOn-premise, Software as a Service (SaaS), Cloud, or Web-Based
Operating SystemsWeb based browser UI
Mobile ApplicationNo
Supported CountriesAll countries except North Korea, Iran, Sudan, Syria and Cuba
Supported LanguagesEnglish

Frequently Asked Questions

Tufin Orchestration Suite, AlgoSec, and RedSeal are common alternatives for FireMon.

Reviewers rate Support Rating highest, with a score of 7.7.

The most common users of FireMon are from Enterprises (1,001+ employees).

FireMon Customer Size Distribution

Consumers0%
Small Businesses (1-50 employees)8%
Mid-Size Companies (51-500 employees)15%
Enterprises (more than 500 employees)77%
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

(113)

Attribute Ratings

Reviews

(1-25 of 69)
Companies can't remove reviews or game the system. Here's why
Score 8 out of 10
Vetted Review
Verified User
Incentivized
We currently use the security manager modules to clean and fine-tune our set of policies centrally. We additionally use a policy planner to automate our process of routine operations in policy sets.
  • Cleaning policy sets.
  • Policy set automation.
  • Detailed analysis of the policies to be implemented.
  • Keep up with new features implemented by security vendors.
Environments where it is required to automate firewall security operations activities. Where it is required to have detailed change audit controls.
Carter Spear | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Incentivized
We use FireMon to track changes in traffic, find rules that we can clean up and restrict, and report to higher-ups. I personally use it to export lists of potential rules to change based on control failures. We use it in most of our separate business units for a variety of reasons, but most are using it to improve security posture.
  • Regular reporting.
  • Dashboarding
  • When my query is too complicated, the search bar changes to an advanced mode. I'd love for it to always be capable of the beginner mode since it takes a long time to get all the pieces of the query I need in advanced mode.
  • Sometimes our active VPN tunnels will show "unused" in FireMon when they are used.
  • I use the allowlisting feature frequently, but it's not possible to bulk-allowlist items.
  • I'd love to be able to report on new control failures. There are a lot of reporting options available, but it seems like a manual export of a CSV is my only choice if I want to look at control failures.
FireMon is best used in a large environment (for example, I have >100 firewalls in my environment). It's best used when trying to improve security posture and showing changes in firewall security over time. It might not be the best choice for smaller environments or those that aren't concerned about security management.
Score 8 out of 10
Vetted Review
Verified User
Incentivized
We use firemon to real time reporting when a change occurs in addition to using it for a biannual clean of any rules that have not been used for 90 days.
  • Give good real time reporting for anyone making a change to any of our firewalls
  • Provides good reporting tools that are out of box
  • Provide good customization tools that is specific to our needs
  • Upgrades are a simple process and support does relatively well with assisting us.
  • There support could be better in terms of having more SME's for their product.
  • FireMon should have a video repository to make it easier on how to use their product
  • customizing reports should be made simpler. If we are looking for a specific date range (e.g., 90 day report on what rules have been used, then it should be able to give us this information) however in our past experience this hasn't always been the case
Firemon product is overall good a product. It gives us a summary of who made what change, when it occurred and at what time, in real time. Their Out of box tools do satisfy the common requests for reporting and there options to create customized report allows us for more options as every environment is different. That is why I gave it an 8 rating.
Score 8 out of 10
Vetted Review
Verified User
We use FireMon to analyze and automatically manage firewall rules for our Palo Alto firewalls.
  • Rule analysis
  • Compliance
  • Identify errors
  • Automation
  • Reporting
  • Alerting
What FireMon is good at:
- Single pane-of-glass console for unified visibility and management
- Policy standardization and automation tools simplify and decrease the time to create and deploy rules
- Preconfigured control sets and scheduling for on-demand and automated PCI-DSS compliance report generation

Room for improvement:

- Policy management for cloud vendors


Score 6 out of 10
Vetted Review
Verified User
Incentivized
FireMon is being used to provide detailed historical records of every change/revision made on every network appliance enterprise-wide. It provides instant visibility on what changed when issues arise. Considering outages and time to restoration are measured by duration, having a single pane of glass showing which firewall rule or ACL was updated is priceless. Without FireMon, we would go into every outage--both small and large--blind, trying to figure out where to start.
  • Tracking firewall rule changes.
  • Normalizing data so that it's easily understandable across different vendors and technologies.
  • Providing detailed or summary reports for the data you actually want.
  • It seems like their licensing model is constantly evolving.
  • Often, support will have to escalate cases to engineering.
  • Certifications are always geared to a particular version.
Better suited for: Compiling a historical record of changes/revisions of network appliances. Understanding rule set complexity in terms of overlapping rules and redundancy. Understanding and viewing rule usage. Understanding network flow--how packets will traverse from this hop to the next. What compliance risks are present due to failed controls.
Score 8 out of 10
Vetted Review
Verified User
Incentivized
We use FireMon Daily. It helps to organize and monitor Firewall policy Health, identify issues and act on them. It is great for rule cleanup and compliance checks. It generates data that can be given to management as well as auditors. Policy Optimizer as well as Custom Reports free up a lot of time that engineers can spend on more valuable tasks.
  • Hitcount Data and Integrity checks of Firewall Rules
  • Traffic Flow Analysis and Rule Usage Reports to help clean up overly permissive rules.
  • Easy way to check specific access allowed in a company across multiple vendors.
  • Automate reviews of Rules with Policy Optimizer tickets.
  • Focus on the 20% of the product that appears unpolished, such as Mapping and Risk Analyzer
  • Understand that certain changes might benefit compatibility with one vendor, but hurt compatibility with another
  • Add more support for more advanced features that vendors have to offer
  • Clean up deployment images, such as wasted disk space on directories not applicable to a server role
I recommend FireMon to consultants or companies needing improvement or monitoring of a rulebase, as if you are looking at 100s or 1000s of firewalls, it the single pane of glass allows you to get a picture rather quickly (especially if multivendor). Companies who must follow PCI, as their reports are exactly what PCI auditors are looking for. I would not recommend FireMon or its competitors to a company that has less than 10 firewalls (or vsyses), as I don't feel it would be worth it.
February 25, 2023

Work in progress

Score 7 out of 10
Vetted Review
Verified User
Incentivized
We use FireMon to validate rules, test traffic pathing and to do TFAs for minimizing overly permissive rules.
  • TFA and TFA output is fantastic
  • Finding misconfigured rules is very easy
  • We arent leveraging very much from FireMon
  • The support site isnt the best
The ability to find an overly permissive rule and then leverage TFA to monitor the rule's traffic with the output being easily consumable is incredibly valuable.
Score 6 out of 10
Vetted Review
Verified User
Incentivized
We use it to get an analysis of our firewall policies and get some recommendations on what policies have not been used for a long time and can be removed, policy re-ordering, optimization, and risks over risky protocols being allowed in policies like telnet or FTP. We use it to push policy automation changes, This enables a zero-touch framework to implement policy changes.
  • Policy overview and optimisation suggestions
  • Risk analysis over wide open policies, risky ports open on policies
  • Zero-touch automation for policies
  • Using with in house ticketing solution to make a framework for policy change approval.
  • The firemon had have some issues after almost every update. They need to improve on that.
  • Cisco is one of the products that has best support, The scope of other products can be improved.
  • Automation of policie implementation breaks very often
Firemon is a more budget option one can look up if they are looking to manage something like cisco, Paloalto, checkpoint or FortiGate. It is not that great with another brand of firewalls like NSX or other ones that are not that much out there.
Anisulla Ali | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Firemon is an awesome Audit tool, recently this tool has helped us to identify the traffic that is hitting a particular rule. I highly recommend Firemon when it comes to hardening the firewall rules.
  • Audit
  • Identify traffic
  • Hardening Firewall Rules
  • NAT logging seems to be not supported
  • It is able to draw the network's topology. However, because it can't see certain things, it doesn't draw the full story but it is still extremely helpful. We also have asymmetric routing, which causes a challenge. FireMon could improve its end-user practices. As an end user, I am just trying to catch up on all the alerts. There are so many, and you still have to go through them and document what was found
  • FireMon could be easier to use and flexibility regarding reporting could be improved.
It is able to draw the network's topology AND to identify the traffic that is hitting this rule. NAT logging seems to be not supported.
Jorge Pomachagua Sotomayor | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Incentivized
We use the PCI reports available on the appliance in order to know the levels of compliance of our business.
  • Detailed reports
  • Unused firewall rules
  • Visibility of the whole configuration
  • Have one only access to configure the appliance and handle reports
Scenarios where any customer handle different brands of appliances this tool helps to get reports of all of them.
Scenarios where you only have one unique brand this tool may not be the best option.
Score 9 out of 10
Vetted Review
Verified User
Incentivized
I use it for reporting and checking for unused firewall rules to do cleanup. I am still new to the Firemon product, so I have not used all of its functions.
  • Reporting
  • Dashboard
  • Rules changes.
  • SIQL query.
  • SIQL query is good but not easy to use.
  • Query interface for advanced does not always has basic query conversion.
  • The report have a lot of info that I need to filter it out.
The dashboard is very good, so you can get reporting in one central location for all company firewalls. You cannot make firewall rule change on Firemon Security Manager.
October 14, 2022

Firemon! The time saver!

Score 9 out of 10
Vetted Review
Verified User
Incentivized
The issues are You have to learn new commands via CLI. There iS no tool to analyze the diagnostic file, you have to send it to Firemon support.
  • Visibility of firewall configuration
  • LDAP authentication server, it does not worked as other tools
  • SMTP configuration
The tool give the customer a lot of visibility about the appliances in general.
Score 9 out of 10
Vetted Review
Verified User
We used FireMon as a firewall analyzer of internal and external perimeters. We were able to gather relevant tcpdumps instead of looking directly in the firewall. This is very useful for executive managements, we can just provide them read only access and if someone in our organization asked them they can directly check for any network traffic on their own.
  • Straightforward firewall analyzer, executive management people can understand what's going on.
  • Provides risk rating for any allowed firewall policies
  • Easy dashboard management
  • Can connect to our SIEM
  • Had an issue integrating Checkpoint firewall, need to improve integration with it.
1. We used FireMon mainly on reviewing firewall policies that are high risk or that are not being used in the network anymore. We are able to configure several thresholds wherein once there are no hit counts for atleast 60 days (2 months) there will be an alert to us administrators. 2. We also use several dashboards that are shared to executive personnel for them to see what is going on in our internal and external perimeters.
Score 9 out of 10
Vetted Review
Verified User
Review FWs for Best Practices (Compliance and Assessment) and Policy Optimization (rule placement, rule review) for specific MSS customers. It is also useful to review policy changes as they can be quickly viewed for each domain.
  • viewing policy changes for a single FW over a period of time
  • reports look very professional
  • convenient and informative dashboards
  • initial configuration is time-consuming, maybe an option to import CVS file would be an option
  • navigation, layout and reporting can be confusing
good selection of canned reports in various areas, helpful in troubleshooting issues (firewall changes, health)
December 07, 2021

Solid and reliable

Score 9 out of 10
Vetted Review
Verified User
Incentivized
FireMon is a great product that compiles information for security and networking issues and is easy to use. Support is some of the best in the industry, questions about the product or upgrades to the application are always answered promptly and with great detail. It is a must-have for any company that wants insight into their network traffic and is looking for added help to stay compliant.
  • traffic monitoring
  • compliance monitoring
  • Ease of use
  • A better customer update letter about upgrades .
The networking team needed insight into traffic for a particular application and had reached out to see if FireMon could provide insight into the traffic flow to help with troubleshooting. It simply made a traffic report that was auto emailed to the team about the issue, and it gave great insight on how often it was being used.
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Old, not well-documented SCADA system. Helped identify and mitigate security issues, firewall rule optimizations, etc. Compliance with DOE security framework.
  • Fast, easy drill down to problem hosts
  • Central dashboard of multiple interfaces for ease of monitoring and tracking
  • Even with older, not widely used applications integration and use was easy
  • None, well laid out and logical to use
  • Easy to ask questions of support staff, not a negative but all I can think of
Great when testing new/changed firewall rules especially as a 'check and balance' with other network tools.
Score 7 out of 10
Vetted Review
Verified User
Incentivized
Firewall audits and cleanup. Intake for firewall requests. Auditing overly permissive rules and policies.
  • Security Manager
  • Device Lists
  • Reporting
  • Excel tables
Firemon does a good job of a one page view dashboard. It is also useful when you have a multi-vendor environment,
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Business Units will request firewall changes using policy planner. This method allow us to ask for all details about what is required to implement the changes. It will also provide the end user a portal and SLA for completion. Auditors love this level of tracking and validation.
  • Tracking Changes
  • Clean UI
  • Good Reporting
  • Hard to Customize Policy Planner workflows
  • UI can be slow in Policy Planner
  • Upgrading FMOS has become more involved
Excellent for enterprise work intake for and managing SLAs.
Score 10 out of 10
Vetted Review
Verified User
Incentivized
We use FireMon as a firewall configuration management tool as well as our primary software suite for responding to auditors regarding network security. Currently the product is mostly focused at the security administrator/engineer level but we have several users in less technical roles across different business units that have some limited but very useful information thanks to that extra level of deployment. This tool has been crucial in helping us keep our overall rule counts down and also restricting access to only applications that are still valid. Recently I've created controls that were pretty simple to make, they essentially evaluate any new rule created to see if it crosses from outside to inside which allows a tier 3 team to analyze those rules daily/weekly. Compared to how I was doing this in Splunk Firemon is 100x better.
  • Finds overly permissive rules
  • Finds redundant rules/unused object (junk)
  • Acts as a snapshot in time config repository (backup system)
  • Helps compare configs from one day to the next to see exactly what changed and who changed it
  • Creating controls for higher tier engineers to review to ensure policy is being followed in near real time.
  • There are a number of reports both built in and custom that can really help make sure company policy is being followed in rule creation.
  • The administration page alerts are pretty bad and need to be finely tuned.
  • Performance issues impacting large organizations with a massive amount of traffic passing over their firewalls
  • Cisco integration is less than Palo and Checkpoint in many areas; perhaps this is a Cisco side issue, but either way, it would be nice if all features worked with all vendors to the same degree
  • As of writing this you can't add Firepower devices directly to Firemon, you have to add a FMC and it can read the config from there. That works well for most people to be fair, but I am looking to kill FMC and use Cisco CDO instead. Firemon is adding support that will permit all of this which I'd estimate at 6 months. Keep that in mind when buying. That said, I'd try to work around the limitation as they add support.
FireMon is very well suited to handle small to midsize networks for total configuration management/rule deployment/reporting. I think where FireMon is less suited is handling larger networks with higher amounts of traffic. To be fair to FireMon, we probably should have been informed by the original sales team (no longer with the company) that we would need more hardware in order to function properly with our network. We've had to use clever workarounds to get basic data from our devices into the product. I do not think this is a problem in all larger organizations but in ours where firewall logging accounts for most logs in the environment, we do have some issues. Update: Firemon is using a lot of different scaling tricks so that you can dedicate servers to functions or load balance the same functions across multiple servers. This won't help with a large environment with routes that don't make much sense but it should help permit the ability to log a lot of traffic if you supply the correct hardware to do so.
Score 8 out of 10
Vetted Review
Verified User
Incentivized
My team uses Firemon primarily for a firewall reviews due to PCI compliance. Firemon offers a great overview of how our network is built and how it can be utilized better for requirements one in the PCI – DSS. Currently, the software is being used by just a department and not the whole organization however, Firemon does impact the entire organization's compliance program.
  • Customer service
  • Sales presentations
  • Follow up
  • Implementation
  • Data storage
  • Swag
Within my industry I have multiple contacts that are looking for exactly what Firemon does. Not only can the software help compliance professional but also network engineers who need a better picture of how infrastructure is set up. As well as new employees that need to learn the environment quickly.
Score 10 out of 10
Vetted Review
Verified User
Incentivized
We are currently using FireMon to monitor our primary corporate and DR firewalls. Also we use them to monitor our eCommerce environment firewalls. We are slowly expanding, as we have a number of retail locations, also with firewalls, and need to monitor them. We use this to push update and config changes, as well as backups and restores (when needed). We also use this to troubleshoot and test new policy implementations
  • Configure management - multiple firewalls made easy
  • Backups - a number of times this has come in handy
  • Troubleshooting - being able to chase down a path issue
  • Rule testing - planning before implementing
  • Initial setup requires quick a bit of legwork if you want to do it right
  • Definitely takes some learning if you are new to the system
  • Making sure everything is tagged and tagged correctly is important and time consuming
We have multiple firewalls in our corporate environment that are from the same vendor, and while this vendor does provide a single console for management, it falls short of being able to do the proper kind of management that you'd need to a large, complex network. FireMon allows for the firewall team to management and monitor the firewall, including rules, paths, and issues in a single environment. Along with the ability to test and troubleshoot route and path issues, which makes life much easy and makes fixing problem much quicker
May 04, 2021

Review for FireMon

Score 9 out of 10
Vetted Review
Verified User
Incentivized
We are primarily using FireMon for Quarterly Compliance.
  • Configuration pulls
  • Drop rule enabled
  • Change History
  • The requirement for syslogs when some of the firewalls are already displaying last hit date, etc. (palo alto)
I think the flexibility of scheduling the config pulls and the flexibility on the architecture (1 box versus as many as you want) are very nice.
Score 9 out of 10
Vetted Review
Verified User
Incentivized
FireMon is being used to monitor changes to our existing firewalls. Our firewalls consist of various Palo Alto models.
  • Easy to create custom controls.
  • Good dashboards for visibility.
  • Easy to use interface.
  • Out of the box reporting for compliance needs.
  • Navigation can be daunting for new users.
  • Not enough granularity with regards to documentation.
FireMon is best suited for change control monitoring and compliance in our organization.
FireMon has enabled us to monitor firewalls from one console, and has support for new models from Palo Alto which we currently use.
December 16, 2020

Secure with Firemon

Score 8 out of 10
Vetted Review
Verified User
Incentivized
FireMon is being used by whole organization. It's a second source of firewall rules and we give access to people who can't be given access to firewalls to review the rules. That way many people are using FireMon.

We are also using it for Rule analysis and rule-recertification.
  • Filter search capabilties
  • Rule recertification using Policy Optimizer
  • Ease of use and interactive WEB UI
  • Some features could be added to the existing functionality which include NAT rules usage
  • Rule expiration normalization from firewalls rather than entering them in rule documentation
  • .csv exports of the files from the firewall pane only gives usage for 30 days by default and that should be increased
FireMon is well suited for rule analysis and compliance
Score 8 out of 10
Vetted Review
Verified User
Incentivized
FireMon is deployed by the Corporate Security Team, the network team will check in all of their firewalls and use the tool for audit purposes. The Security Team also aligns witth each Business Unit security leader, if that BU is audited they use the data produced from FireMon as evidence.
  • Firewall Auditing
  • Reporting
  • Ease of use
  • Resources, to much minimun hardware requirements to run
  • Architecture is to big, to many endpoints to deploy
  • Hosted Cloud solution could help in place of System deployments
FireMon is a great tool, but it is very expensive to run. Also the last sale rep we had was very aggresive and didnt respect the fact we told them that we were not interested at the time to upgrade or add any additional licensing.
Return to navigation