Cyber Strategy
Cyber Secure
Cyber Operations
Cyber Response
Cyber Resilience
Menu
Products
Firewall Policy Builder
Locking down open security policies on your next generation firewall deployment is now made easy with firewall policy builder – allowing you to lock down in weeks rather than months or even years.
Lock OPEN firewall security policies
Assists in locking down OPEN firewall security policies
Reduce high security risks
Reduces exposure from high-risk OPEN security policies
Meet compliance requirements
Helps meet compliance requirement of granular security policies on need to know basis
NGFW firewall deployments
Assists in new NGFW firewall deployments in your data center where firewalls never existed
Lock down OPEN Firewall Security Policies
Firewall Policy Builder will guide and help you drive security effectiveness through configuration optimization of NGFWs and NGIPS devices.
- Assists in locking down OPEN firewall security policies
- Reduces exposure from high-risk OPEN security policies
- Helps meet compliance requirement of granular security policies on need to know basis
- Assists in new NGFW firewall deployments in your data center where firewalls never existed
- Provides assistance and optimization when migrating from one firewall vendor to another
How It Works
The appliance is installed at the organization’s management network.
The newly deployed next-generation firewall sends traffic logs in the form of SYSLOG to the firewall policy builder tool which performs real-time analysis and storing the communication flow matrix in a series of complex databases.
With custom developed advanced algorithms, the tool populates the database with the communication flow as the firewall continues to send traffic SYSLOG to the tool.
After sufficient time-span of a few weeks to capture sufficient traffic flow, that tool can then be instructed to the group, coalesce and combine traffic flow of similar characteristics. For example, ten source IP addresses communicating to the same destination IP address with five TCP and UDP ports are grouped into a single policy and single communication flow matrix.
Once grouped the firewall policy builder can then generate the CLI configuration commands of the grouped security policies in different formats.
Firewall policy builder supports various next-generation firewall technology vendors. Once the configuration commands are generated the IT department can simply copy and paste the configuration to the firewalls and apply the changes resulting in open security policies on firewalls being locked down in a short period of time.
Technical Features
- Works with major NGFW vendors - Juniper Networks SRX and Fortinet FortiGate platforms
- REAL-TIME SYSLOG Engine parsing traffic logs for OPEN security policies
- Pre-Hardened Secure Database for SYSLOG data retention and normalization
- Advanced Grouping Algorithm of traffic flow SYSLOG data that are of similar characteristics
- Granular filtering of SYSLOG data to analyze interesting security policy IDs, security zones, ingress interface etc
- Automated one-click generation of consolidated security firewall policies configuration commands
- Automated configuration commands can be executed directly into the supported firewalls
- Integration with SIEM solution as a secondary SYSLOG forwarding destination
Lock down OPEN Firewall Security Policies
Firewall Policy Builder will guide and help you drive security effectiveness through configuration optimization of NGFWs and NGIPS devices.
- Assists in locking down OPEN firewall security policies
- Reduces exposure from high-risk OPEN security policies
- Helps meet compliance requirement of granular security policies on need to know basis
- Assists in new NGFW firewall deployments in your data center where firewalls never existed
- Provides assistance and optimization when migrating from one firewall vendor to another
How It Works
The appliance is installed at the organization’s management network.
The newly deployed next-generation firewall sends traffic logs in the form of SYSLOG to the firewall policy builder tool which performs real-time analysis and storing the communication flow matrix in a series of complex databases.
With custom developed advanced algorithms, the tool populates the database with the communication flow as the firewall continues to send traffic SYSLOG to the tool.
After sufficient time-span of a few weeks to capture sufficient traffic flow, that tool can then be instructed to the group, coalesce and combine traffic flow of similar characteristics. For example, ten source IP addresses communicating to the same destination IP address with five TCP and UDP ports are grouped into a single policy and single communication flow matrix.
Once grouped the firewall policy builder can then generate the CLI configuration commands of the grouped security policies in different formats.
Firewall policy builder supports various next-generation firewall technology vendors. Once the configuration commands are generated the IT department can simply copy and paste the configuration to the firewalls and apply the changes resulting in open security policies on firewalls being locked down in a short period of time.
Technical Features
- Works with major NGFW vendors - Juniper Networks SRX and Fortinet FortiGate platforms
- REAL-TIME SYSLOG Engine parsing traffic logs for OPEN security policies
- Pre-Hardened Secure Database for SYSLOG data retention and normalization
- Advanced Grouping Algorithm of traffic flow SYSLOG data that are of similar characteristics
- Granular filtering of SYSLOG data to analyze interesting security policy IDs, security zones, ingress interface etc
- Automated one-click generation of consolidated security firewall policies configuration commands
- Automated configuration commands can be executed directly into the supported firewalls
- Integration with SIEM solution as a secondary SYSLOG forwarding destination
Interested in Firewall Policy Builder?
Assist your organization meet compliance requirements by locking down high-risk OPEN security policies in real-time.
Solutions
Network and Infrastructure Security
Zero Trust and Private Access
Endpoint and Server Protection
Vulnerability and Patch Management
Data Protection
Application Security
Secure Software and DevSecOps
Cloud Security
Identity Access Governance
Governance, Risk and Compliance
Security Intelligence Operations
Incident Response
Dubai
Abu Dhabi Office 7, Floor 14
Makeen Tower, Al Mawkib St.
Al Zahiya Area
Abu Dhabi, UAE
Kuwait Mezzanine Floor, Tower 3
Mohammad Thunayyan Al-Ghanem Street, Jibla
Kuwait City, Kuwait
+971 4 3383365
[email protected]
London 160 Kemp House, City Road
London, EC1V 2NX
United Kingdom
Company Number: 10276574
The website is our proprietary property and all source code, databases, functionality, software, website designs, audio, video, text, photographs, icons and graphics on the website (collectively, the “Content”) are owned or controlled by us or licensed to us, and are protected by copyright laws and various other intellectual property rights. The content and graphics may not be copied, in part or full, without the express permission of DTS Solution LLC (owner) who reserves all rights.
DTS Solution, DTS-Solution.com, the DTS Solution logo, HAWKEYE, FYNSEC, COMPLYAN, FRONTAL, HAWKEYE CSOC WIKI and Firewall Policy Builder are registered trademarks of DTS Solution, LLC.