Demo: AlgoSec's Optimization of Cisco Firewall Policies

Ecosystem | Demo: AlgoSec's Optimization of Cisco Firewall Policies Subscribe

In this demo, Yitzy Tannenbaum provides you with guidelines on how to clean up and optimize your Cisco firewalls policies with the AlgoSec solution.

View transcript

[Music] in this video we'll see how to clean up and optimize your Cisco firewall policies with algo sec the first thing you want to do is log on to the alga sex suite here you can see a list of all the firewalls and devices that make up the network for this demonstration we'll choose a Cisco firewall once we're on the cisco firewalls page will choose policy optimization here you'll see a long list of categories offering different types of options to clean up and optimize your network first we'll look at unused rules here you'll see a list of rules that are on the firewall but are not in use to eliminate clutter we'll want to disable them this is easy to do with Outlook sec all you need to do is check the boxes of the unused rules and then click disable selected rules next we'll look at covered rules a covered rule is when you have one or more rules that cover another rule this makes that rule obsolete in this case you can also easily disable them by clicking on the disable selected rules button the duplicate objects option will help you uncover two or more policy objects that point the same IP address or to the same set of IP addresses next we'll briefly take a look at the intelligent policy tuner here we'll take a deeper dive into the objects to understand what's in use and how much is in use so for example here we can see a rule defined as anything but as you can see by this icon very little traffic goes through this rule based on the traffic logs we can see that all the traffic that comes from this source is contained within this network range here we'll recommend changing the object any to a new object consisting only of this network range lastly we'll look at rule reordering you can see that in this example more traffic goes through this first rule than the second if we simply switch the placement of the rules will enhance the firewalls performance by 52% this has been a short video on how to clean up and optimize your Cisco firewall policies with the Alvis tech solution to learn more go to Alvis x-com and schedule a live demo today

Videos

Ecosystem | Demo: AlgoSec's Optimization of Cisco Firewall Policies Subscribe

Related videos

Application Segmentation with Cisco Tetration & AlgoSec

Demo: AlgoSec's Cisco ACI App Center

Cisco ACI and AlgoSec Integration (Overview and Demo)

Cisco ACI and AlgoSec Integration (ActiveChange Demo)