Networking

10:15 AM
Connect Directly
RSS
E-Mail
50%
50%

Tufin Firewall Management Suite Supports Palo Alto Networks' Application-Identity Capabilities

Tufin Technologies has extended its firewall audit and change management capabilities to "next generation" firewalls with support for Palo Alto Networks products. In addition to standard network-based firewall capabilities, Palo Alto enables organizations to create fine-grained policies and rules based on application and user identity using deep packet inspection (DPI) technology.

Tufin Technologies has extended its firewall audit and change management capabilities to "next generation" firewalls with support for Palo Alto Networks products. In addition to standard network-based firewall capabilities, Palo Alto enables organizations to create fine-grained policies and rules based on application and user identity using deep packet inspection (DPI) technology.

"The ability to identify applications by type, rather than port number, was the key feature for us, says Craig Hanrahan, senior manager of IT infrastructure for Sonus Networks. His company started deploying Palo Alto Networks firewalls about two years ago and has been using Tufin SecureTrack for a year. "Most applications can change ports; they're user-configurable, and as soon as you lock it down one way, the user finds another."

Firewall audit tools automate the analysis of complex and bloated rule sets to verify and demonstrate enterprise access controls and configuration change management processes. The market has been driven by compliance, particularly Payment Card Industry Data Security Standard (PCI DSS).

Beyond compliance, enterprises can improve network performance, reduce downtime, improve security and divert manpower from firefighting firewall issues and analyzing configurations. It's not unusual for firewalls to have hundreds or even thousands of rules, many of them redundant and obsolete. Analyzing firewall configurations, especially in large networks with scores firewalls, has grown beyond manual effort.

"We had a very manual process for change management, and Tufin helps automate the process," says Hanrahan. "Now the network admin makes the changes and the security people can review them immediately. It was a primary driver for buying the tool." He says it has also helped Sonus streamline its firewall rule sets, eliminating unused rules.

Previous
1 of 2
Next
Comment  | 
Print  | 
More Insights
Slideshows
Cartoon
Audio Interviews
Archived Audio Interviews
Jeremy Schulman, founder of Schprockits, a network automation startup operating in stealth mode, joins us to explore whether networking professionals all need to learn programming in order to remain employed.
White Papers
Register for Network Computing Newsletters
Current Issue
2014 Private Cloud Survey
2014 Private Cloud Survey
Respondents are on a roll: 53% brought their private clouds from concept to production in less than one year, and 60% ­extend their clouds across multiple datacenters. But expertise is scarce, with 51% saying acquiring skilled employees is a roadblock.
Video
Twitter Feed