Sold by: FireMon
Deployed on AWS
Real-time visibility, control, and management for network security devices across Amazon AWS cloud environments.
4.4
Overview
Hyper Scale Security for your Hyper Scalable Clouds Whether your data and applications are stored on premises, in the data center, or public clouds (or a combination of all three), organizations still need to meet their requirements of security, control, compliance, and governance by themselves. The on-demand nature of public clouds such as AWS naturally means that workloads move and regroup, where maintaining continuous visibility and control over the rapid changes calls for expert intervention. Common security challenges include: Centralized visibility and threat management for your hybrid environment Deploy applications and workloads securely Manage access & control privileges to cloud and on-premises workloads Secure data transfer, data migrations Accomplish all of the security deployments at the pace and scale demanded by cloud architectures
Highlights
- FireMon can easily create, maintain, and distribute policies in highly dynamic networks, as well as scope the impact of proposed changes to your security. By automating & orchestrating, Security Manager ensures your ability to operate at scale across cloud, virtual and hybrid environments.
- Through traffic flow analysis, FireMon tracks behavior across your network to identify which applications are being used. You can correlate vulnerability scans with access path analysis to trace every available path across the network to reduce your attack surface with a defined remediation.
- Automated compliance assessments help you validate your configuration requirements and alert you to violations. Security Manager out-of-the-box audit ready and customizable reports saves time and gives you the confidence to meet your regulatory and internal security demands.
Details
Sold by
Categories
Delivery method
Delivery option
FMOS AWS CloudFormation Template
64-bit (x86) Amazon Machine Image (AMI)
Latest version
Operating system
OtherLinux 8.1
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Buyer guide
Gain valuable insights from real users who purchased this product, powered by PeerSpot.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing and entitlements for this product are managed through an external billing relationship between you and the vendor. You activate the product by supplying a license purchased outside of AWS Marketplace, while AWS provides the infrastructure required to launch the product. AWS Subscriptions have no end date and may be canceled any time. However, the cancellation won't affect the status of the external license.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Vendor refund policy
Please see seller website for refund details.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
Additional details
Usage instructions
Before launch, in the AMI configuration settings, you must add additional volume to prevent launch failure.
Add Storage tab, click Add New Volume and in the Size field enter at least 600. Do not change the Root Volume Type.
Complete FMOS Initial Setup after launch:
- Open a web browser.
- Navigate to https://<hostname>:55555/setup, replacing <hostname> of the SIP instance running in AWS with the IP or the hostname.
- In the Authentication dialog box-Username is fmosadmin- Password is the EC2 Instance ID- Click Submit
- After authenticating, complete the required fields in the FMOS Initial Setup form. The username is read-only and cannot be changed, but you can update the password.
- After submitting the FMOS Initial Setup form, FMOS will begin the deployment process.Log in to SIP after deployment:
- Open a web browser tab.
- Enter the IP address of your SIP/AWS instance.
- Enter your username and password.
- Username is firemon (case-sensitive)
- Password is the MAC address for the instance
- Click Log in. For details, see: https://www.firemon.com/wp-content/uploads/AWS-AMI-Launch-and-FMOS-Install.pdf
CF template Usage Instruction: 1.Go to AWS marketplace subscription and Launch cloud formation teamplate. 2.Choose Action 'Launch Cloud formation' and click on Launch 3.Enter Stack Name. 4.Enter all mandatory fields in Parameters. VPC ID Subnet ID Instance Type Key Pair Name IP address Volume Size FMOS username 5.Specify Ecosystem in "Machine Configuration". 6.Add Organization Name. 7.Click Next. 8.Review: Review all sections entered and click Next. 9.A new stack with above Stack Name is created with status "CREATE_COMPLETE". 10.Go to EC2 Dashboard, a new instance is created. 11.After the deployment process completes, you can log in to Security Intelligence Platform to continue setting up your network, such as adding users and devices. a. Open another browser tab. b. Enter the IP address of your AWS instance, For example, https://<hostname_or_IPaddress>;. c. Enter your username and password: Username is firemon (case-sensitive) Password is the MAC address for the instance with colons removed and lowercase letters instead of uppercase letters. For example, a MAC address of 00:05:95:A1:2B:CC would be 000595a12bcc. This is a one-time password to use at first installation and will need to be reset after initial login. Click Log In
Resources
Support
Vendor support
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
FireMon Cloud Defense is a saas-based Cloud Detection and Response platform that automates assessment and remediation of critical cloud security issues. Our software continuously analyzes your entire cloud infrastructure for misconfigurations and security risks, automating remediation and policy enforcement.
FireMon Asset Manager delivers network visibility, security, and anomaly detection across hybrid cloud computing environments.
FireMon Asset Manager delivers network visibility, security, and anomaly detection across hybrid cloud computing environments.
Customer reviews
Antara R Deolekar
Automated compliance reviews have reduced manual firewall audits and improved policy governance
Reviewed on May 28, 2026
Review provided by PeerSpot
What is our primary use case?
How has it helped my organization?
FireMon Security Manager helped automate the compliance review by identifying unused, duplicate, risky, and overly permissive rules across the firewalls in our organization, reducing manual audit efforts and improving firewall governance, which also has the approved things documented.
In my day-to-day work, the most valuable features are compliance management and the risk policy assessment because it automatically identifies the risky, overly permissive, unused, or non-compliant firewall rules, reduced manual audit and review efforts significantly, helps to maintain compliance such as ISO, and improves overall firewall governance and security posture. These are the best features because of this, and they are very beneficial to the administrator and from a company perspective.
There are noticeable improvements which we monitor after using FireMon Security Manager , including a reduction in firewall audit and compliance review by fifty to sixty percent, a significant reduction in manual spreadsheet-based rule analysis, faster identification of unused or risky firewall rules, reduced operational overhead for security teams managing firewalls in multi-firewall environments, and better visibility that helped reduce misconfiguration and policy complexity.
What is most valuable?
We use FireMon Security Manager for firewall policy and rule analysis, compliance auditing, and to identify risky, unused, or duplicate firewall rules, change monitoring, and policy validation.
The best features FireMon Security Manager offers are firewall policy analysis and rule cleanup, compliance management, multi-vendor firewall visibility, risk policy assessment, change monitoring and configuration tracking, and security posture management.
What needs improvement?
The UI of FireMon Security Manager can be improved, and while existing features are working as expected based on the feedback, I believe the TAC or OEM support can be improved as well.
For how long have I used the solution?
What do I think about the stability of the solution?
What do I think about the scalability of the solution?
FireMon Security Manager's scalability is good, and it can handle the load well.
How are customer service and support?
The customer support for FireMon Security Manager is moderate and okay. I am suggesting that it should be improved.
Which solution did I use previously and why did I switch?
How was the initial setup?
What about the implementation team?
What was our ROI?
What's my experience with pricing, setup cost, and licensing?
Which other solutions did I evaluate?
What other advice do I have?
FireMon Security Manager positively impacted our organization, and I need to share some points. It boosts productivity by reducing manual effort during firewall audits and compliance reviews.
FireMon Security Manager helped boost bandwidth by reducing manual efforts during firewall and compliance review, faster identification of risky, unused, or overly permissive firewall rules, providing multi-vendor visibility, and change monitoring.
I would rate FireMon Security Manager an eight on a scale of one to ten. I chose an eight for FireMon Security Manager because it has a very broad feature set, which is very helpful based on my experience. The special things are firewall policy and risk visibility and the multi-vendor support. I deducted two points because of the UI and the technical support.
Regarding FireMon Security Manager's AI capabilities, based on my experience, I have not used the full deep visibility, but whichever I used, it provides a good result based on the justification which we give. Based on the feature which we are using, it provides very good results, and it helps uniquely in that it can mitigate the compliance error, policy error, and the configuration with the help of AI assistance.
The accuracy and reliability of FireMon Security Manager's AI output are very useful sometimes, but at times it is not useful because we have to cross-verify physically or take the help of other AI-generated tools as well. So, it can be good, but we cannot fully rely on the AI output it provides; it is fifty-fifty in my case.
I can suggest that if you have multiple firewalls in your organization, you should take FireMon Security Manager into your organization because it will help you to reduce all the compliance part. My overall rating for FireMon Security Manager is eight out of ten.
Gemma H.
Keeps Branch Firewall Policies in Sync with Ease
Reviewed on May 18, 2026
Review provided by G2
What do you like best about the product?
Makes it easy to keep all branch policies in sync.
What do you dislike about the product?
There’s a bit of a learning curve, but the free training is helpful and makes it easier to get started.
What problems is the product solving and how is that benefiting you?
Visibility into the policies for each of my branch firewalls makes troubleshooting access issues much easier.
George S.
Excellent Lifecycle Management and Compliance Reporting
Reviewed on May 18, 2026
Review provided by G2
What do you like best about the product?
Rule lifecycle management, compliance, reporting, dashboards, and overall usability.
What do you dislike about the product?
Cloud integration moves more slowly than expected. For example, the ability to normalise AWS/Azure load balancers feels slower than it should.
What problems is the product solving and how is that benefiting you?
Rule lifecycle management, rule documentation and justification, continuous compliance monitoring, policy optimization and cleanup, and reporting—along with dashboards and overall usability.
Earl V.
Easy to Use and Highly Customizable for Compliance Needs
Reviewed on May 15, 2026
Review provided by G2
What do you like best about the product?
Its easy to use and customize for my compliance requirements.
What do you dislike about the product?
The UI is kinda boring, like really needs a facelift.
What problems is the product solving and how is that benefiting you?
Becoming audit ready
Zee C.
Aligns Logs, Needs Better Upgrade Communications
Reviewed on May 12, 2026
Review provided by G2
What do you like best about the product?
I like how Policy Manager aligns all the activity within one portal. It looks pretty good since it captures everything within one platform instead of gathering logs from different Palo Alto consoles.
What do you dislike about the product?
Normally, they do have some kind of upgrades. When they have upgrades, it should be properly communicated to us so we can engage our change process.
What problems is the product solving and how is that benefiting you?
I use Policy Manager to align all logs and capture activities across multiple projects and locations, simplifying monitoring in one tool.