Tufin SecureTrack 4.2
Strengths: Appliance-based solution with great rule-base reporting
Weaknesses: Leans heavily on Check Point compatibility
Verdict: Good value for customers who have many Juniper, Cisco or Check Point devices
Tufin SecureTrack 4.2 is an appliance-based security operations solution that only manages policies for firewalls. The interface is web-based and supports real-time monitoring, change management and reporting for Check Point, Cisco and Juniper firewall systems.
Setup required little effort as the system is shipped in the form of Tufin's T-500 appliance. The interface is fairly simple in nature, and when analysing rule bases and running reports you can see the information in the firewall vendor's native style, although sample reports provided are mostly in Check Point rule format.
The interface to add new devices within the appliance is very easy to use. In a step familiar to those used to network policy device solutions, we were asked to add devices and supply credentials. Although SecureTrack doesn't actually make any direct changes to firewall, it can actively monitor them through SNMP traps, Check Point OPSEC and other methods. Policies are created based on configuration standards within the organisation and are then translated into the rules for SecureTrack to monitor.
There are some nice additional features. Firewall administrators who manage many devices will benefit from the ability to analyse rule bases for optimisation. Tools can be used to spot-check the rule base, or recertification of particular rules can be scheduled across one or many devices. Also, rules usage reports can tell you which rules have gone unused across your devices, or which were used most often. Side-by-side firewall comparisons are another nice touch, representing the extensive reporting capabilities for policy enforcement, change management, optimisation, traffic patterns, resource use and more.
Documentation is thorough, and the support side is superb, including several webcast training clips to walk you through many administrative steps. We wish more vendors would offer this.
Standard support is charged at 20 per cent of the total cost and premium support (24/7) is 40 per cent. Professional services are available from Tufin for around £1,500 a day plus expenses. Although just a bit pricey, customers who are running a mix of these devices in high numbers will appreciate the features.