FireMon provides a nice view
Overall Satisfaction with FireMon
FireMon is used for firewall change management from request to implementation and verification. Security Manager is used extensively for policy test, and to enable cleanup and migration.
Pros
- FireMon provides a live view in to firewalls across the enterprise in a single tool.
- Policy Planner is customizable, and can be fit to your company's workflow requirements, to include API for Service Now.
- FireMon provides policy testing capability, and traffic flow analysis, which is critical for timely troubleshooting.
Cons
- The FireMon interface has evolved from a desktop client to a browser-based portal, but added many layers to navigating commands. A simpler interface with most commands and functions one click deep (and all visible) would be more efficient for daily ops workflow.
- Policy test is great, but doesn't differentiate when a policy is a user-auth rule, so the result may show that policy is already in place, when it is actually not usable.
- The use of FireMon has eliminated the backlog in firewall policy changes, approval, and implementation.
- FireMon has greatly increased the accuracy of changes, and reduced the risk of planned changes (3 incidents in over 27000 change tickets--most with multiple policy changes in each, is a stellar record)
Comments
Please log in to join the conversation