Skip to main content
TrustRadius
FireMon

FireMon

Overview

What is FireMon?

FireMon is a real-time security policy management solution built for today’s complex multi-vendor, enterprise environments. Supporting the latest firewall and policy enforcement technologies spanning on-premises networks to the cloud, FireMon delivers visibility and control across the entire IT landscape to…

Read more
Recent Reviews

FireMon Firewall Analyzer Review

9 out of 10
March 01, 2022
We used FireMon as a firewall analyzer of internal and external perimeters. We were able to gather relevant tcpdumps instead of looking …
Continue reading

Solid and reliable

9 out of 10
December 07, 2021
Incentivized
FireMon is a great product that compiles information for security and networking issues and is easy to use. Support is some of the best in …
Continue reading
Read all reviews

Awards

Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards

Reviewer Pros & Cons

View all pros & cons
Verified User
Manager in Information Technology
Computer & Network Security Company, 1001-5000 employees
Carter Spear | TrustRadius Reviewer
Carter Spear
Cybersecurity Engineer
Nelnet (Banking, 5001-10,000 employees)
Return to navigation

Pricing

View all pricing
FireMon

FireMon

N/A
Unavailable

What is FireMon?

FireMon is a real-time security policy management solution built for today’s complex multi-vendor, enterprise environments. Supporting the latest firewall and policy enforcement technologies spanning on-premises networks to the cloud, FireMon delivers visibility and control across the…

Entry-level set up fee?

  • Setup fee optional
For the latest information on pricing, visithttps://www.firemon.com/request-a…

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting/Integration Services

Would you like us to let the vendor know that you want pricing?

24 people also want pricing

Alternatives Pricing

ManageEngine ADAudit Plus

ManageEngine ADAudit Plus

$595
per year
What is ManageEngine ADAudit Plus?

ADAudit Plus offers real-time monitoring, user and entity behaviour analytics, and change audit reports that helps users keep AD and IT infrastructure secure and compliant.Track all changes to Windows AD objects including users, groups, computers, GPOs, and OUs.Achieve hybrid AD monitoring with a…

Speedify VPN

Speedify VPN

Free
What is Speedify VPN?

Speedify is a new kind of bonding VPN designed from the ground up for speed, security, and reliability. The vendor says Speedify's bonding protocol lets it do things no other VPN can: switching between Wi-Fi and Cellular without breaking sockets, and bonding connections together for speed…

Return to navigation

Product Details

What is FireMon?

FireMon is a real-time security policy management solution built for today’s complex multi-vendor, enterprise environments.

Supporting the latest firewall and policy enforcement technologies spanning on-premises networks to the cloud, FireMon delivers visibility and control across the entire IT landscape to automate policy changes, meet compliance standards, to minimize policy-related risk.

Since creating their policy management solution in 2004, FireMon states they've helped more than 1,700 enterprises in nearly 70 countries secure their networks.

FireMon provides solutions that extend and integrate policy management with today’s latest technologies including SD-WAN, SASE, XDR, and SOAR.

The vendor states FireMon customers experience up to 90% improvements in network security policy efficiency while eliminating common misconfigurations which lead to breaches and compliance violations.

FireMon Features

  • Supported: KPI Dashboards: See the network at a glance with analysis, trending and key performance indicator widgets on a customizable dashboard.
  • Supported: Traffic Flow Analysis: Monitor network traffic behavior – down to the application level – to isolate overly permissive configurations.
  • Supported: Access Path Analysis: Trace every available access path across the network and visualize relationships between network devices to identify risk access points.
  • Supported: Network Mapping: Visualize and interact with highly complex network security environments or segmentations.
  • Supported: Change Detection & Reporting: Isolate, document and alert on every ongoing change implemented throughout an existing firewall policies.
  • Supported: Assessments & Controls: Define and employ unique security controls for customized, repeatable analysis and reporting on firewall policies.

FireMon Videos

Improve Security Operations. Improve Security Outcomes.
FireMon: Enforce Compliance
FireMon: Manage Change

FireMon Integrations

FireMon Competitors

FireMon Technical Details

Deployment TypesOn-premise, Software as a Service (SaaS), Cloud, or Web-Based
Operating SystemsWeb based browser UI
Mobile ApplicationNo
Supported CountriesAll countries except North Korea, Iran, Sudan, Syria and Cuba
Supported LanguagesEnglish

FireMon Downloadables

Frequently Asked Questions

Tufin Orchestration Suite, AlgoSec, and RedSeal are common alternatives for FireMon.

Reviewers rate Support Rating highest, with a score of 7.7.

The most common users of FireMon are from Enterprises (1,001+ employees).

FireMon Customer Size Distribution

Consumers0%
Small Businesses (1-50 employees)8%
Mid-Size Companies (51-500 employees)15%
Enterprises (more than 500 employees)77%
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

(113)

Attribute Ratings

Reviews

(1-4 of 4)
Companies can't remove reviews or game the system. Here's why
February 24, 2023

Cost effective and operationaly acceptable for basic operations

Verified User
Employee in Information Technology
Logistics & Supply Chain Company, 10,001+ employees
Score 6 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
We use it to get an analysis of our firewall policies and get some recommendations on what policies have not been used for a long time and can be removed, policy re-ordering, optimization, and risks over risky protocols being allowed in policies like telnet or FTP. We use it to push policy automation changes, This enables a zero-touch framework to implement policy changes.
Pros and Cons
  • Policy overview and optimisation suggestions
  • Risk analysis over wide open policies, risky ports open on policies
  • Zero-touch automation for policies
  • Using with in house ticketing solution to make a framework for policy change approval.
  • The firemon had have some issues after almost every update. They need to improve on that.
  • Cisco is one of the products that has best support, The scope of other products can be improved.
  • Automation of policie implementation breaks very often
Likelihood to Recommend
Firemon is a more budget option one can look up if they are looking to manage something like cisco, Paloalto, checkpoint or FortiGate. It is not that great with another brand of firewalls like NSX or other ones that are not that much out there.
Scalability
5
Once provisioned the size of VMs cannot be changed, This is something that we heard they are working on. I haven't heard about a solution to this as of now. A number of collectors can be deployed without a need for extra licenses of you have remote firewalls.
Return on Investment
  • We are using this as a migration our our legacy policy manager solution.
  • The support with our in house ticketing solution and approval process has made it easier.
  • The admins have to do many sessions with support to resolve the issues. Most break cannot be fixed by users themselves.
Alternatives Considered
AlgoSec and Tufin both are good tools but the cost involved for what they offer as services led us to go with Firemon.
Users and Roles
20
We use firemon for policy analysis, tuning, and cleanup.
We are using it to analyze the traffic for our ASAs and fortigates.
We also use the security module for compliance scans and auditing.
We are working on implementation of policy automation and integration of firemon with our remedy and service now.
Support Headcount Required
20
We have an in-house operations team to manage the operations of all our firewalls. These people have network routing and network firewall skills. They have skills in firewall policy creation, dynamic routing protocols, NAT, PAT, IPSEC tunnels, GRE tunnels and Next generation firewall features like IPS, DNSSEC and Web application firewall.
Business Processes Supported
  • Policy tuning and ananlysis.
  • Security compliances.
  • Audit trailing.
  • Tagging and adding description to rules.
Innovative Uses
  • We are integrating with Gitlab and remedy for automating policy creation tickets.
  • We have created customized compliances standards to scan firewalls and policies
  • We are creating change reports being sent to soc to analyze the policy or configuration changes.
Future Planned Uses
  • Create compliance scans as per soc policies.
  • To analyze and manage aws security groups
  • To maintain zscaler internet access security policies and groups.
Likelihood to Renew
4
The shell is locked out and we can't run any general centos commands. The implementation and maintainence of the arch is very complex. Even with the right identifiers on log messages the log collection keeps failing. The warning messages on the device are ambiguous. The log messages on firemon are a bit confusing and don't show the exact issue.
Other Software Used
Products Replaced
No
Key Differentiators
  • Price
  • Product Usability
The product provided some good pricing competition to algosec and tufin. It also provided the policy analysis, automation and complaince requirements for this price segment
Evaluation Lessons Learned
Yes, We would like to analyze algosec and tufin more.
Premium Support
Yes, we have enterprise support as we have a large number of firewalls being managed by firemon
Bug Resolution
No
Exceptional Examples of FireMon Support
Firemon helped us with complex collector deployment: Some collectors were on prem and some were on cloud. It took some help from the support team but they were of great help.
December 03, 2020

Firewall change reports help with audits and compliance.

Verified User
Analyst in Information Technology
Information Technology & Services Company, 501-1000 employees
Score 7 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
We use FireMon for compliance purposes. We use it to generate reports whenever a change is made to the Firewall. We can see who pushed policy in Checkpoint, what Change# it is associated with, and what was actually done compared to what the change ticket stated.
Pros and Cons
  • When working correctly, it generates reports for each firewall when a change is made.
  • It is a great tool to audit Firewall rules, redundant rules, and changes made
  • It doesn't always provide reports for when changes are made.
  • It only shows who pushed policy in the reports, not who made the actual changes to the firewall.
  • You can no longer drill down into reports at a granular level which back in Version 7 you were able to, which provided a great deal of information.
  • Seems to have some issues communicating with Checkpoint retrieving all reports that are split between two data centers.
Likelihood to Recommend
When working correctly, it is great for audit purposes when you need to show when changes were made, what was made, who made them, and with what change. When the reports aren't working, you have to dig up all this information manually. Back in version 7, you were able to drill down in the reports that provided a very granular detailed information, now the newer version doesn't allow for this.
Scalability
5
When working correctly, it can scale well to our environment which runs multiple Firewalls with backup Firewalls.
FireMon Feature Ratings
Return on Investment
  • When working correctly, it works well for audit purposes providing needed information for our auditors and compliance.
Alternatives Considered
AlgoSec and Tufin both have initial issues during the POC stage, and FireMon even though with the changes they have made still works better and is more user friendly.
Products Replaced
No
Key Differentiators
  • Product Features
  • Product Usability
Evaluation Lessons Learned
During the POC stage before buying the full product, make sure the product you are getting works with the Firewall solution you have, like Checkpoint.
Premium Support
Not Sure
Bug Resolution
Yes
Issue with FireMon servers working in vSphere where RAM and CPU usage doesn't show spikes. The management station will lag out and not provide reports when policy is pushed in Checkpoint causing us to have to do fake installs to generate reports because the servers resources capped out and lagged but the VM doesn't reflect this.
Exceptional Examples of FireMon Support
We had our rep visit us onsite to assist us in standing up a second data collector to work with our management station to help alleviate the work load the management station was under as we have the management station in one data center and have two data centers. The second data collector was configured in our second data center.
October 16, 2020

FireMon: Great Product

JP
Jeff Plotkin
Network System Administrator
Univ of MD (Higher Education, 201-500 employees)
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
We currently use FireMon for reviewing/cleaning up rules and plan to implement policy planner by the EOY. It improves and simplifies documentation.
Pros and Cons
  • Lets you know what is unused so you can lock it down
  • Improves the process of review rules
  • Open up knowledge base on Google, to make searching easier with better results
Likelihood to Recommend
Still learning the FireMon package, but the more I learn the better I like it. We have a small shop so I tend to jump between priorities.
Scalability
10
Works great for our two failover pairs--this question may be better for a larger organization.
FireMon Feature Ratings
Return on Investment
  • Saves time
  • Nice documentation
Alternatives Considered
None. This is the first we have used.
Users and Roles
8
System Admins, Network Admins Approver and Compliance for the approval process of our firewall rules
Support Headcount Required
1
Once it's was setup it basically runs itself except for patches and updates.
Business Processes Supported
  • provide documentation and approval process for firewall rule changes
  • eliminate duplicate rules
  • allows rule owner to review and verify rules are still required for business
Innovative Uses
  • lest us know which rules are hit the most so we can move them to the top to help improve firewall performance
Future Planned Uses
  • don't know off hand
Likelihood to Renew
10
It improves documentation, save time and easy to use.
Other Software Used
SolarWinds Network Performance Monitor (npm), SolarWinds Kiwi Syslog Server
Products Replaced
No
Key Differentiators
  • Product Features
  • Product Reputation
It was much easier the doing everything manually. Looking forward to getting the rule approval process in place.
Evaluation Lessons Learned
It would be nice if we had control over creating the approval process without going through profession services.
Premium Support
Not Sure
Exceptional Examples of FireMon Support
no haven't contacted them in a while
Easy Tasks
  • basic reports
Difficult Tasks
  • the more complex/custom reports can be challenging
Usability
8
It save me time and I'm able to have the review - review the rule independently with using my time.
January 08, 2018

FireMon - Worth it.

Verified User
Administrator in Information Technology
Oil & Energy Company, 1001-5000 employees
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
FireMon is used by firewall administrators and security analysts on a regular basis. Administrators analyze proposed changes and existing rules base. Security analysts use it to audit.
Pros and Cons
  • Fast analysis of flaws in the rules set
  • Dynamic mapping
  • Normalize varied platforms into a standard appearance
  • Quickly find unused rules and objects
  • Useful canned reports
  • While you can evaluate potential changes to firewall rules, you can not implement the rules from FireMon.
  • The GUI is easy to navigate, but learning where to go for the useful features takes a little practice.
  • While the base product has reports for analyzing vulnerabilities, a separate license is required to get the full benefit.
Likelihood to Recommend

Our primary use case for FireMon was to aid audits of firewall changes and finding weak rules. The base product meets this need 100%. Implementation is easy. Compatibility for all major vendors is present. Support is great. No regrets.

Regular audits are simple. Changing report criteria is possible, but the built-in reports were effective enough.

Scalability
10
We have encountered no issues scaling or changing systems that feed the data. Upgrades are straight forward.
Return on Investment
  • The primary benefit has been reducing the labor of analysis of rules in both audit and administration. Tasks that took hours now take minutes.
Alternatives Considered
For our use case, only FireMon met our needs with the systems we use.
Users and Roles
10
Firewall administrators and cyber security analysts are the primary users.
Support Headcount Required
2
Firewall administrators on our networking team maintain FireMon. The ability to configure firewalls and routers/switches to send data is most important. The application does not require much skill to configure. FireMon technical support is also available for assistance.
Business Processes Supported
  • Business control: mapping requests for change, authorization for change, and the change that was made.
  • Best Practice review: overly permissive rules, shadowed rules, use of "any", etc...
  • Change/impact analysis: changes can be review in FireMon prior to production implementation
Innovative Uses
  • The ability to add reports monitoring for specific rules that are no longer approved was unexpected, but useful.
Future Planned Uses
  • We may add the module to allow pivot analysis of vulnerability data.
Likelihood to Renew
10
We use the tool frequently and it is integrated into our processes.
Other Software Used
Products Replaced
No
Key Differentiators
  • Product Features
  • Product Usability
  • Analyst Reports
  • Third-party Reviews
Third-party reviews breaking down the features really helped pick a product. We were more interested in analysis than management.
Evaluation Lessons Learned
No changes.
Implementation Details / Implementation Partner
  • Implemented in-house
Implementation Phases
No
Change Management Lessons
Change management was minimal
Implementation Issues
  • Had to work with FireMon support and another vendor to figure out the configuration on one tool to send data.
Implementation Rating
10
Implementation is fairly simple. Most issues can be resolved by referencing manuals.
Premium Support
Not Sure
Bug Resolution
No
Exceptional Examples of FireMon Support
The local FireMon Sales Engineer who supports a different industry is always quick to help and back up support. He's the closest to us. He has just as much ownership for our problems as our assigned staff. Great team work.
Easy Tasks
  • Once configured, the pre-made reports provide immediate value.
  • The data from the reports are informative and offer insight into remediation of problems.
Difficult Tasks
  • Configuring systems to send data to FireMon may take some effort and troubleshooting. At least one system required co-ordination between support from both vendors.
Usability
9
For the most part, using the tool is straight forward. Some of the menus could use some work on usability.
Return to navigation