RE: Firewalls management tools

http://algosec.com/Products/FA/



-----Original Message-----
From: listbounce@... [mailto:listbounce@...] On Behalf Of firewalls@...
Sent: Monday, March 17, 2008 5:17 PM
To: security-basics@...
Subject: Firewalls management tools

Hi!
Working on multiple firewalls equipments (checkpoint / Fortinet / Netscreen...), I have identified two main subjects to improve our management tasks:
-    Improving firewall rules set on the complete firewall pool;
-    Mapping network flows :
        Being able to list all (authorised) flows between two hosts or subnets;
        Being able to quickly find a firewall with a deny rule on an operational flow;
-    Track and control device configuration

In order to reach our goal, I have identified the following (-commercial-) products:
- Firewall Analyser (Algosec)
- Skybox assure
- Firemon from secure Passage
- SecureTrack from Tufin
- RedSeal SRM (more wide product but it seems to respond to my primary purpose)
- Firewall manager from Solsoft.

=> Does anyone have a first experience on this kind of product?
=> Do you think it would be better to use several firewall management solutions from each specific vendor?


Thank You!

Not sure if anyone has mentioned it there is a product called Solsoft...
they specialize in providing a centralized firewall management solution,
which will also allow an end user or engineer the ability to migrate
from one firewall vendor to another...

-----Original Message-----
From: listbounce@... [mailto:listbounce@...]
On Behalf Of Raz Karmi
Sent: Wednesday, March 19, 2008 5:21 AM
To: firewalls@...; security-basics@...
Subject: RE: Firewalls management tools

http://algosec.com/Products/FA/



-----Original Message-----
From: listbounce@... [mailto:listbounce@...]
On Behalf Of firewalls@...
Sent: Monday, March 17, 2008 5:17 PM
To: security-basics@...
Subject: Firewalls management tools

Hi!
Working on multiple firewalls equipments (checkpoint / Fortinet /
Netscreen...), I have identified two main subjects to improve our
management tasks:
-    Improving firewall rules set on the complete firewall pool;
-    Mapping network flows :
        Being able to list all (authorised) flows between two hosts or
subnets;
        Being able to quickly find a firewall with a deny rule on an
operational flow;
-    Track and control device configuration

In order to reach our goal, I have identified the following
(-commercial-) products:
- Firewall Analyser (Algosec)
- Skybox assure
- Firemon from secure Passage
- SecureTrack from Tufin
- RedSeal SRM (more wide product but it seems to respond to my primary
purpose)
- Firewall manager from Solsoft.

=> Does anyone have a first experience on this kind of product?
=> Do you think it would be better to use several firewall management
solutions from each specific vendor?


Thank You!

Hi !

I'm currently working with Solsoft since 4 years (Cisco FSM management).
Great tool !

The graphical interface (network map) allows a very synthetic view of
open flows. It is possible to switch from graphical view to "excel like"
one and then make filters based on regular expressions. No issue then to
list flows between two hosts or subnets.

Regards


firewalls@... wrote: