TrustRadius: an HG Insights company

FireMon

Score7.9 out of 10

113 Reviews and Ratings

Get a Demo

What is FireMon?

FireMon is a real-time security policy management solution built for today’s complex multi-vendor, enterprise environments.

Supporting the latest firewall and policy enforcement technologies spanning on-premises networks to the cloud, FireMon delivers visibility and control across the entire IT landscape to automate policy changes, meet compliance standards, to minimize policy-related risk.

Since creating their policy management solution in 2004, FireMon states they've helped more than 1,700 enterprises in nearly 70 countries secure their networks.

FireMon provides solutions that extend and integrate policy management with today’s latest technologies including SD-WAN, SASE, XDR, and SOAR.

The vendor states FireMon customers experience up to 90% improvements in network security policy efficiency while eliminating common misconfigurations which lead to breaches and compliance violations.

Categories & Use Cases

Reviews

What users are saying about FireMon.
View all reviews

FireMon in a 100+ firewall environment.

Incentivized
Carter SpearView profile
Cybersecurity Engineer in Information Technology at Nelnet (5001-10,000 employees employees)

Use Cases and Deployment Scope

We use FireMon to track changes in traffic, find rules that we can clean up and restrict, and report to higher-ups. I personally use it to export lists of potential rules to change based on control failures. We use it in most of our separate business units for a variety of reasons, but most are using it to improve security posture.

Pros

  • Regular reporting.
  • Dashboarding

Cons

  • When my query is too complicated, the search bar changes to an advanced mode. I'd love for it to always be capable of the beginner mode since it takes a long time to get all the pieces of the query I need in advanced mode.
  • Sometimes our active VPN tunnels will show "unused" in FireMon when they are used.
  • I use the allowlisting feature frequently, but it's not possible to bulk-allowlist items.
  • I'd love to be able to report on new control failures. There are a lot of reporting options available, but it seems like a manual export of a CSV is my only choice if I want to look at control failures.

Return on Investment

  • FireMon has made it easy to discover places where rules can be improved.
  • FireMon has improved our security on existing firewalls and makes it easy to discover when new dangerous rules are implemented.

Network Security Compliance and Audit

Incentivized
Anisulla Ali
Cyber Security Architect in Information Technology at Altamed (5001-10,000 employees employees)

Use Cases and Deployment Scope

Firemon is an awesome Audit tool, recently this tool has helped us to identify the traffic that is hitting a particular rule. I highly recommend Firemon when it comes to hardening the firewall rules.

Pros

  • Audit
  • Identify traffic
  • Hardening Firewall Rules

Cons

  • NAT logging seems to be not supported
  • It is able to draw the network's topology. However, because it can't see certain things, it doesn't draw the full story but it is still extremely helpful. We also have asymmetric routing, which causes a challenge. FireMon could improve its end-user practices. As an end user, I am just trying to catch up on all the alerts. There are so many, and you still have to go through them and document what was found
  • FireMon could be easier to use and flexibility regarding reporting could be improved.

Return on Investment

  • To identify the traffic that is hitting this rule positive impact
  • Audit positive impact
  • Hardening Positive impact
  • NAT logging seems to be not supported Negative

Work in progress

Incentivized
Lee Theobald
SecOps Manager at Liveperson (501-1000 employees employees)

Use Cases and Deployment Scope

We use FireMon to validate rules, test traffic pathing and to do TFAs for minimizing overly permissive rules.

Pros

  • TFA and TFA output is fantastic
  • Finding misconfigured rules is very easy
  • We arent leveraging very much from FireMon

Cons

  • The support site isnt the best

Return on Investment

  • our ROI has been nonexistent since we have had licenses bought year over year that have not been deployed.

Alternatives Considered

Tufin Orchestration Suite and OSSEC

Firemon a multiple brand integrator

Incentivized
Jorge Pomachagua SotomayorView profile
Security Specialist in Engineering at NeoSecure (501-1000 employees employees)

Use Cases and Deployment Scope

We use the PCI reports available on the appliance in order to know the levels of compliance of our business.

Pros

  • Detailed reports
  • Unused firewall rules
  • Visibility of the whole configuration

Cons

  • Have one only access to configure the appliance and handle reports

Return on Investment

  • Increase efficiency in compliance reporting
  • Gain visibility in enviroments with multiple brands

Alternatives Considered

Infoblox DDI (BloxOne), Palo Alto Networks Prisma Cloud and Netskope CASB

Firemon! The time saver!

Incentivized
Jorge Pomachagua
Security Specialist in Engineering at Compartamos (501-1000 employees employees)

Use Cases and Deployment Scope

The issues are You have to learn new commands via CLI. There iS no tool to analyze the diagnostic file, you have to send it to Firemon support.

Pros

  • Visibility of firewall configuration

Cons

  • LDAP authentication server, it does not worked as other tools
  • SMTP configuration

Return on Investment

  • Easier to delete inactive firewall rules
  • Increased efficiency in compliance reporting

Alternatives Considered

Infoblox DDI (BloxOne), Palo Alto Networks Prisma Cloud, Palo Alto Panorama, Palo Alto Networks Threat Protection, Palo Alto Networks WildFire, Palo Alto Networks Next-Generation Firewalls - PA Series and Fortinet FortiGate

Related Products

Products similar to FireMon that may also meet your needs.
All comparisons
AlgoSec
CompareLearn more
Tufin Orchestration Suite
CompareLearn more
RedSeal
CompareLearn more
Skybox Security
CompareLearn more