Tufin for Enterprise and Firewall Migration Success
March 01, 2018
Tufin for Enterprise and Firewall Migration Success
Score 7 out of 10
Vetted Review
Verified User
Overall Satisfaction with Tufin
Tufin is used to help with config audit and review of security policies/ACLs for multiple firewalls. We are working to implement the secure change feature.
- Security Policy/ACL overview showing hit count and shadow policies
- Configuration change tracking by user
- Detailed reports on the firewall configuration
- Palo Alto Networks Integration
- Better/more user friendly api for integration with ticketing systems
- Web UI structure is not user-friendly
- Tufin has helped increase firewall migration time letting us build new policies instead of migrating garbage in
- Tufin helps to identify who changed what when so if a change impacts access Tufin can help find what change was made from a single location
- Tufin has a great reporting feature - except for Palo Alto right now - that helps to review and audit policy, flagging overly permissive and shadow or partially shadow policies.
Tufin and AlgoSec both provide a lot of the same features. I would say the choice of the two depend on your overall objective and use case. Both tools have features to accomplish different things. For firewall policy review, they are about the same in my opinion. We are currently evaluating RedSeal and don't have enough data to compare. RedSeal may lack some of the change features but appears to give the same level of reporting functionality.