FireMon: Igniting Innovation, Guarding Security.
We currently use the security manager modules to clean and fine-tune our set of policies centrally. We additionally use a policy planner …
Overview
What is FireMon?
FireMon is a real-time security policy management solution built for today’s complex multi-vendor, enterprise environments. Supporting the latest firewall and policy enforcement technologies spanning on-premises networks to the cloud, FireMon delivers visibility and control across the entire IT landscape to…
Recent Reviews
Awards
Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards
Reviewer Pros & Cons
Pricing
N/A
Unavailable
What is FireMon?
FireMon is a real-time security policy management solution built for today’s complex multi-vendor, enterprise environments. Supporting the latest firewall and policy enforcement technologies spanning on-premises networks to the cloud, FireMon delivers visibility and control across the…
Entry-level set up fee?
- Setup fee optional
For the latest information on pricing, visithttps://www.firemon.com/request-a…
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting/Integration Services
Would you like us to let the vendor know that you want pricing?
24 people also want pricing
Alternatives Pricing
What is ManageEngine ADAudit Plus?
ADAudit Plus offers real-time monitoring, user and entity behaviour analytics, and change audit reports that helps users keep AD and IT infrastructure secure and compliant.Track all changes to Windows AD objects including users, groups, computers, GPOs, and OUs.Achieve hybrid AD monitoring with a…
What is Speedify VPN?
Speedify is a new kind of bonding VPN designed from the ground up for speed, security, and reliability. The vendor says Speedify's bonding protocol lets it do things no other VPN can: switching between Wi-Fi and Cellular without breaking sockets, and bonding connections together for speed…
Product Details
- About
- Integrations
- Competitors
- Tech Details
- Downloadables
- FAQs
What is FireMon?
FireMon is a real-time security policy management solution built for today’s complex multi-vendor, enterprise environments.
Supporting the latest firewall and policy enforcement technologies spanning on-premises networks to the cloud, FireMon delivers visibility and control across the entire IT landscape to automate policy changes, meet compliance standards, to minimize policy-related risk.
Since creating their policy management solution in 2004, FireMon states they've helped more than 1,700 enterprises in nearly 70 countries secure their networks.
FireMon provides solutions that extend and integrate policy management with today’s latest technologies including SD-WAN, SASE, XDR, and SOAR.
The vendor states FireMon customers experience up to 90% improvements in network security policy efficiency while eliminating common misconfigurations which lead to breaches and compliance violations.
FireMon Features
- Supported: KPI Dashboards: See the network at a glance with analysis, trending and key performance indicator widgets on a customizable dashboard.
- Supported: Traffic Flow Analysis: Monitor network traffic behavior – down to the application level – to isolate overly permissive configurations.
- Supported: Access Path Analysis: Trace every available access path across the network and visualize relationships between network devices to identify risk access points.
- Supported: Network Mapping: Visualize and interact with highly complex network security environments or segmentations.
- Supported: Change Detection & Reporting: Isolate, document and alert on every ongoing change implemented throughout an existing firewall policies.
- Supported: Assessments & Controls: Define and employ unique security controls for customized, repeatable analysis and reporting on firewall policies.
FireMon Videos
Improve Security Operations. Improve Security Outcomes.
FireMon: Enforce Compliance
FireMon: Manage Change
FireMon Integrations
- Palo Alto Networks Next-Generation Firewalls - PA Series
- Palo Alto Networks Advanced URL Filtering
- Palo Alto Networks Virtualized Next-Generation Firewalls - VM Series
- VMware NSX
- VMware ESXi
- Check Point Quantum Security Gateway Next Generation Firewall
- Check Point Quantum Smart-1 Security Management
- AhnLab TrusGuard
- Check Point FireWall-1 / SmartCenter / VPN-1 Edge including VSX
- Cisco ASA / PIX / FWSM / ASA Context
- Dell SonicWall
- F5 AFM
- Fortinet Fortigate / VDOM
- Huawei USG / Eduemon
- Hillstone SG-6000 series
- IBM Proventia MFS
- Juniper Netscreen / SRX / ScreenOS / VSYS
- Secui NXG / MF2
- Stonesoft Management Center and detected firewalls
- Topsec Firewall
- WeGuardia FW
FireMon Competitors
FireMon Technical Details
| Deployment Types | On-premise, Software as a Service (SaaS), Cloud, or Web-Based |
|---|---|
| Operating Systems | Web based browser UI |
| Mobile Application | No |
| Supported Countries | All countries except North Korea, Iran, Sudan, Syria and Cuba |
| Supported Languages | English |
FireMon Downloadables
Frequently Asked Questions
Reviewers rate Support Rating highest, with a score of 7.7.
The most common users of FireMon are from Enterprises (1,001+ employees).
FireMon Customer Size Distribution
| Consumers | 0% |
|---|---|
| Small Businesses (1-50 employees) | 8% |
| Mid-Size Companies (51-500 employees) | 15% |
| Enterprises (more than 500 employees) | 77% |
Comparisons
Compare with
Reviews and Ratings
(113)Attribute Ratings
Reviews
(1-12 of 12)Companies can't remove reviews or game the system. Here's why
FireMon is being used to provide detailed historical records of every change/revision made on every network appliance enterprise-wide. It provides instant visibility on what changed when issues arise. Considering outages and time to restoration are measured by duration, having a single pane of glass showing which firewall rule or ACL was updated is priceless. Without FireMon, we would go into every outage--both small and large--blind, trying to figure out where to start.
- Tracking firewall rule changes.
- Normalizing data so that it's easily understandable across different vendors and technologies.
- Providing detailed or summary reports for the data you actually want.
- It seems like their licensing model is constantly evolving.
- Often, support will have to escalate cases to engineering.
- Certifications are always geared to a particular version.
February 25, 2023
Work in progress
We use FireMon to validate rules, test traffic pathing and to do TFAs for minimizing overly permissive rules.
- TFA and TFA output is fantastic
- Finding misconfigured rules is very easy
- We arent leveraging very much from FireMon
- The support site isnt the best
December 01, 2021
FM for Multi-vendor Environment
Firewall audits and cleanup. Intake for firewall requests. Auditing overly permissive rules and policies.
- Security Manager
- Device Lists
- Reporting
- Excel tables
December 03, 2020
Firewall change reports help with audits and compliance.
We use FireMon for compliance purposes. We use it to generate reports whenever a change is made to the Firewall. We can see who pushed policy in Checkpoint, what Change# it is associated with, and what was actually done compared to what the change ticket stated.
- When working correctly, it generates reports for each firewall when a change is made.
- It is a great tool to audit Firewall rules, redundant rules, and changes made
- It doesn't always provide reports for when changes are made.
- It only shows who pushed policy in the reports, not who made the actual changes to the firewall.
- You can no longer drill down into reports at a granular level which back in Version 7 you were able to, which provided a great deal of information.
- Seems to have some issues communicating with Checkpoint retrieving all reports that are split between two data centers.
October 15, 2020
The honest FireMon review
FireMon is used in conjunction between the Network and Security team for security purposes like evaluating current security posture of the firewalls as far as rules and configurations in place. We are aiming to use it to automate yearly recurring review activities by our teams and to facilitate the amount of time it takes to complete them.
- Rule review.
- Best practice guidelines review.
- Configuration review.
- CIS benchmark integration would be great.
- The reporting inside the platform is great, but the exported versions could be improved to facilitate reading and get a high summary executive view.
FireMon is being used for firewall optimization and activity monitoring. It also leverages the firewall operations management supporting daily operations and assisting the firewall security team focusing on the exact activities needed. Audit teams are getting the outputs of firewall operations. It’s an effective tool to be compliant with several regulations and determining which items/rules should be changed or modified to be compliant. Additional controls can be integrated throughout the firewall operations from the very beginning to the last degree. Overall solutions decrease the auditing of firewalls internally as well as externally. Hidden risks are visible through FireMon to the operation team as well as to information security and upper-level management.
- Integration with different vendors
- Enrichment capabilities
- Risk analyzer
- Global dashboard
- Reporting features
- GUI is somewhat cumbersome for the beginners
- Policy planner has a lack of customization. The templates are very strict.
- Again for the beginners, it has its own custom language and familiarization takes time.
- Planning and deployment guide is lacking.
- Local support should be improved or additional support options could be offered.
June 01, 2020
Firemon Security Manager v7/v8
FireMon Policy Planner (version 7) is currently being used as our firewall request system across the IT organization. This allows us to have a central location for managing and tracking all firewall change requests. The workflow allows tickets to proceed through various levels of approval prior to implementation. Maintaining audit records of firewall changes is a business requirement, FireMon Security Manager (versions 7 and 8) is currently being used by our security team to satisfy audit requirements through compliance assessments and reports.
- Version 8 addressed some shortcomings of the previous version regarding response time and administration capabilities. Reports are generated quickly and there are more customization options for administrators.
- New dashboards provide a quick overview that is much more informative than the previous version.
- The enterprise view is a nice way to view devices across the organization at a glance.
- The search functionality is much improved in version 8 and allows you to search across all devices if you so choose. It is quick and has a query syntax builder that is a vast improvement over searching capabilities in version 7.
- Creating custom controls is much better in the newer version. The syntax helper will build the correct query for you.
- When they moved from version 7 to version 8 there were some areas that seemed neglected. The generated reports did not always render properly when viewed as a PDF, though they looked fine in HTML. Another lost function was reporting usage on NAT rules in firewalls.
- The scheduling function for reports/assessments is not the easiest thing to find or administer. It would be nice to be able to schedule reports directly from the Security Manager without having to go to Administration.
- I would like to see customizable reports. Right now you must create custom controls and add them to custom assessments.
- The GUI does not always maintain your filters or settings if you drill down into an object and then return.
- There are not always enough search filter options and they are sometimes hard to view.
- Some reports are not very useful. It would be nice to see those re-evaluated or re-worked into a usable report.
May 18, 2020
FireMon - Great tool for a clean environment
Currently, FireMon is used as an auditing tool to track all changes. Also, we use it for quarterly reviews to do rule cleanup on firewall rules. It is only being used by our IT Security Team for our firewall assets. This tool is required for record retention.
- Tracking all changes that occur on assets.
- Able to quickly identify duplicate or unused rules.
- Automation and workflow.
- Network maps have a lot of room for improvement
- How FireMon is updated; not able to pull updates directly from the system.
January 24, 2019
FireMon is excellent, but review my comments
Well, we are using FireMon in our IT department only. I would like to share my latest concern about it. Since the last major upgrade of FireMon, I am facing a major problem where all my devices are showing the Critical button. While some are having serious issues, others are not but it keeps showing up as Critical. In the last versions, we had three icons and we could directly identify and prioritize the criticality of each. This is my major concern with the update. FireMon also does not recognize Source Object group difference and thus makes my reports unreliable and I have to double check! Otherwise, I love working with FireMon.
- Redundancy checks
- Cleaning rules
- Keep consistency on your firewalls
- Tracking problems
- Compliance check
- For redundant rules, adding source object group check
I am a network security engineer for a large ISP and we recently implemented FireMon in our network to help manage our firewalls. We are a growing company and this product helps us consolidate our firewalls to give us a better understanding of how they are being used and how often.
- FireMon gives a great overview of all firewalls on the network.
- FireMon tells us what rules are and aren't being used to help us keep our policies manageable.
- FireMon gives us a better understanding of what areas might need more security.
- It's great that it can tell us what rules are redundant but it doesn't lay out the rules side by side.
- Could provide more online training like videos and documentation, to maximize our use of FireMon.
January 11, 2017
Great Resource and a Reasonable Cost
The IT Perimeter Security Team uses FireMon to clean up unused Rules and ports not being used by the Firewalls along with running compliance checks against the firewalls to insure they are in line with best practices.
- Tracks Firewall rule usage.
- Tracks and documents all Firewall changes.
- Holds all Firewall ACLs in one centralized location.
- Compatibility to see VPN tunnel ACLs.
- Reports could be easier to customize.
- Single licensing Enterprise option. Added other firewalls and needed another license - cumbersome.
January 10, 2017
Not bad
FireMon is only being used for firewall configuration monitoring purposes. In other words, any changes on the firewall we would check on FireMon.
- FireMon does a great job at monitoring any changes on the firewall rules
- Monitor any user accounts that perform the changes on the firewall
- Easy to set up
- Collecting logs of logs usage on the firewall from a SIEM device would be useful
- A report to generate all firewall rule changes within the last year