FireMon Security Manager for Juniper Firewalls


Through our partnership with Juniper Networks, we have expanded Security Manager to include a complete set of firewall management capabilities for Juniper firewalls. With Security Manager, you can can manage the configuration changes, clean up legacy policies and achieve ongoing compliance with governance and local policies.


Configuration Change Management

Firewall change management can be difficult and costly. Automate the process, send immediate change reports to the team and capture critical business needs with Security Manager’s suite of change management features.

Change Process
Change Process w/ Rule Recommendation
Let your users submit firewall changes. Then, let Security Manager automatically determine if a new policy is necessary and recommend the correct change.
Rule Documentation
Firewall Rule Documentation
Capture the reason for access and overlay it on the firewall policies. Capture business owner, approver, expiration date and justification for access.
Audit Log
Audit Log and Change Report
Get notified every time the firewall changes, and keep a record of when and what changed for a complete audit history.

Firewall Cleanup and Optimization

Firewall configurations grow in size and complexity. Removing the policies that are not in use or are hidden by other policies is a great way to simplify and prevent future errors. Additionally, for policies defined too broadly (like an Any object in the service column of an “accept” rule), Security Manager can recommend ways to narrow down the definition.

Rule Usage
Rule Usage Analysis
Learn which policies are the most-used and least-used, and get a list of unused policies that can be removed.
Hidden Rules
Hidden Rules Report
Analyze the policies controlling traffic between two zones to determine which of them are hidden and can be removed.
Traffic Flow
Traffic Flow Analysis
Target broadly defined rules to determine the actual usage and see recommended ways to improve the policy definition.

Firewall Compliance and Security Analysis

Knowing how firewalls are configured with respect to regulations, policies and best practices is challenging when there are many zones, hundreds of policies and thousands of objects. Security Manager automates the analysis of configurations, continuously finding compliance failures and high-risk configurations.

Policy Behavior
Policy Behavior Modeling
Define traffic scenarios as source, destination and service, and determine the firewall’s current behavior. Then, test critical business continuity scenarios after every configuration change.
Zone-Based Risk Analysis
Zone-Based Risk Analysis
Define the risk of services between two zones of the network, and find all policies that pose risk. For instance, find all instances where HTTP, not HTTPS, is allowed into the PCI zone.
PCI Nerc and Best Practice
PCI, NERC and Best Practice Compliance
Assess the configuration of your firewalls against the common standards. Get actionable results, including which individual security rules are non-compliant.