Sold by: FireMon
Deployed on AWS
Real-time visibility, control, and management for network security devices across Amazon AWS cloud environments.
4.4
Overview
Hyper Scale Security for your Hyper Scalable Clouds Whether your data and applications are stored on premises, in the data center, or public clouds (or a combination of all three), organizations still need to meet their requirements of security, control, compliance, and governance by themselves. The on-demand nature of public clouds such as AWS naturally means that workloads move and regroup, where maintaining continuous visibility and control over the rapid changes calls for expert intervention. Common security challenges include: Centralized visibility and threat management for your hybrid environment Deploy applications and workloads securely Manage access & control privileges to cloud and on-premises workloads Secure data transfer, data migrations Accomplish all of the security deployments at the pace and scale demanded by cloud architectures
Highlights
- FireMon can easily create, maintain, and distribute policies in highly dynamic networks, as well as scope the impact of proposed changes to your security. By automating & orchestrating, Security Manager ensures your ability to operate at scale across cloud, virtual and hybrid environments.
- Through traffic flow analysis, FireMon tracks behavior across your network to identify which applications are being used. You can correlate vulnerability scans with access path analysis to trace every available path across the network to reduce your attack surface with a defined remediation.
- Automated compliance assessments help you validate your configuration requirements and alert you to violations. Security Manager out-of-the-box audit ready and customizable reports saves time and gives you the confidence to meet your regulatory and internal security demands.
Details
Sold by
Categories
Delivery method
Delivery option
FMOS AWS CloudFormation Template
64-bit (x86) Amazon Machine Image (AMI)
Latest version
Operating system
OtherLinux 8.1
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Buyer guide
Gain valuable insights from real users who purchased this product, powered by PeerSpot.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing and entitlements for this product are managed through an external billing relationship between you and the vendor. You activate the product by supplying a license purchased outside of AWS Marketplace, while AWS provides the infrastructure required to launch the product. AWS Subscriptions have no end date and may be canceled any time. However, the cancellation won't affect the status of the external license.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Vendor refund policy
Please see seller website for refund details.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
Additional details
Usage instructions
Before launch, in the AMI configuration settings, you must add additional volume to prevent launch failure.
Add Storage tab, click Add New Volume and in the Size field enter at least 600. Do not change the Root Volume Type.
Complete FMOS Initial Setup after launch:
- Open a web browser.
- Navigate to https://<hostname>:55555/setup, replacing <hostname> of the SIP instance running in AWS with the IP or the hostname.
- In the Authentication dialog box-Username is fmosadmin- Password is the EC2 Instance ID- Click Submit
- After authenticating, complete the required fields in the FMOS Initial Setup form. The username is read-only and cannot be changed, but you can update the password.
- After submitting the FMOS Initial Setup form, FMOS will begin the deployment process.Log in to SIP after deployment:
- Open a web browser tab.
- Enter the IP address of your SIP/AWS instance.
- Enter your username and password.
- Username is firemon (case-sensitive)
- Password is the MAC address for the instance
- Click Log in. For details, see: https://www.firemon.com/wp-content/uploads/AWS-AMI-Launch-and-FMOS-Install.pdf
CF template Usage Instruction: 1.Go to AWS marketplace subscription and Launch cloud formation teamplate. 2.Choose Action 'Launch Cloud formation' and click on Launch 3.Enter Stack Name. 4.Enter all mandatory fields in Parameters. VPC ID Subnet ID Instance Type Key Pair Name IP address Volume Size FMOS username 5.Specify Ecosystem in "Machine Configuration". 6.Add Organization Name. 7.Click Next. 8.Review: Review all sections entered and click Next. 9.A new stack with above Stack Name is created with status "CREATE_COMPLETE". 10.Go to EC2 Dashboard, a new instance is created. 11.After the deployment process completes, you can log in to Security Intelligence Platform to continue setting up your network, such as adding users and devices. a. Open another browser tab. b. Enter the IP address of your AWS instance, For example, https://<hostname_or_IPaddress>;. c. Enter your username and password: Username is firemon (case-sensitive) Password is the MAC address for the instance with colons removed and lowercase letters instead of uppercase letters. For example, a MAC address of 00:05:95:A1:2B:CC would be 000595a12bcc. This is a one-time password to use at first installation and will need to be reset after initial login. Click Log In
Resources
Support
Vendor support
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
FireMon Cloud Defense is a saas-based Cloud Detection and Response platform that automates assessment and remediation of critical cloud security issues. Our software continuously analyzes your entire cloud infrastructure for misconfigurations and security risks, automating remediation and policy enforcement.
FireMon Asset Manager delivers network visibility, security, and anomaly detection across hybrid cloud computing environments.
FireMon Asset Manager delivers network visibility, security, and anomaly detection across hybrid cloud computing environments.
Customer reviews
Alfred S.
Deep Multi-Vendor Firewall Visibility and Fast SIQL Auditing in FireMon Policy Manager
Reviewed on May 08, 2026
Review provided by G2
What do you like best about the product?
What I like best about FireMon Policy Manager is the depth of visibility it gives you into firewall policies across a multi-vendor environment. Being able to pull every rule from Palo Alto, Cisco, Fortinet, and Check Point devices into a single normalized view, and then actually query that data with SIQL, has been a huge time-saver compared to the manual auditing we used to do. The real-time change detection and automated compliance assessments mean we catch drift and risky configurations before they become audit findings, rather than during them.
What do you dislike about the product?
The UI is probably my biggest gripe. While it's functional and packs in an enormous amount of capability, it can feel dated in spots compared to more modern SaaS-style interfaces, and the learning curve for new users is steeper than I'd like.
What problems is the product solving and how is that benefiting you?
Policy Manager solves the fundamental problem of firewall sprawl, over time, environments accumulate thousands of rules across dozens of devices from different vendors, and nobody has a clear picture of what's actually in place, what's being used, and what's quietly creating risk. Before tools like this, answering a simple question like "does any rule allow telnet from an untrusted zone?" meant logging into multiple consoles, exporting configs, and stitching the answer together by hand. With Policy Manager, that's a single query and a few seconds of work.
Imran B.
Centralized, Streamlined Policy Management with Great FireMon Support
Reviewed on May 05, 2026
Review provided by G2
What do you like best about the product?
What I like most about Policy Manager is how it centralizes and streamlines policy administration across the organization. Another big plus is that FireMon support can create custom scripts for us when we need them.
What do you dislike about the product?
It takes some time to get used to learning FireMon and to find the things you’re looking for.
What problems is the product solving and how is that benefiting you?
We are able to run reports for compliance and audit with Policy Manager and connect to our devices.
Financial Services
FireMon Policy Manager: One Console for Multi-Vendor Firewall Policy, Faster Audits
Reviewed on Apr 28, 2026
Review provided by G2
What do you like best about the product?
What I really appreciate about FireMon Policy Manager is how it handles the "messy" reality of modern networks. In the real world, most companies don’t rely on just one firewall brand; you usually end up with a mix of Palo Alto, Check Point, Fortigate, and maybe some cloud-native security groups in AWS or Azure. What I like is that Policy Manager treats them all the same—it acts as a universal translator so you aren’t jumping between five different consoles just to check a single rule. The UI is built for power users, so while there’s a bit of a learning curve, the performance and AI-driven insights make it worth it by spotting risky "policy drift" before an auditor does. It’s definitely an investment, but the ROI hits home when you realize you’ve traded weeks of manual cleanup and "audit panic" for a streamlined, automated workflow backed by a support team that truly understands the tech.
What do you dislike about the product?
While FireMon is incredibly powerful, it isn’t without its frustrations, and most of them stem from its “enterprise-first” design. The biggest hurdle is the steep learning curve: it’s a “power user” tool, so if you aren’t in it every day, the interface can feel overwhelming—and in some places, even a bit “basic” or dated, especially around the reporting engine. It’s also fairly resource-heavy, needing a lot of RAM and CPU to keep everything running smoothly, which can be a real headache for infrastructure teams.
In day-to-day use, maintenance and troubleshooting can feel clunky as well. The underlying architecture is complex, and when something goes sideways, the logs can be surprisingly ambiguous. That often leaves you wishing for more “self-service” visibility, instead of having to call support. Essentially, it’s like driving a high-end semi-truck: it’ll carry any load you give it, but it’s definitely not a “point-and-click” sports tool.
In day-to-day use, maintenance and troubleshooting can feel clunky as well. The underlying architecture is complex, and when something goes sideways, the logs can be surprisingly ambiguous. That often leaves you wishing for more “self-service” visibility, instead of having to call support. Essentially, it’s like driving a high-end semi-truck: it’ll carry any load you give it, but it’s definitely not a “point-and-click” sports tool.
What problems is the product solving and how is that benefiting you?
The core problem FireMon solves is the "rule bloat" and fragmentation that naturally happens as a company grows. In a typical setup, you’re dealing with a massive, tangled web of rules across different platforms that nobody wants to touch for fear of breaking something. FireMon steps in as the "cleaner" and "architect," identifying exactly which rules are redundant or risky so you can delete them with confidence. For me, the real benefit is the shift from being reactive to proactive; instead of spending weeks panicking before an audit or manually digging through logs to find a misconfiguration, you get automated reports and real-time alerts. It basically gives you back your weekends by turning hours of manual rule-checking into a few clicks, ensuring your network stays "clean" and compliant without the usual operational headache.
Jatin Sharma
Improved firewall compliance and risk visibility has enabled precise least‑privilege policies
Reviewed on Apr 27, 2026
Review provided by PeerSpot
What is our primary use case?
The main case of FireMon Security Manager is firewall policy management and compliance.
For an example, an application team requested access from a vendor network to an internal server. Before approving it, I used FireMon Security Manager to simulate the rule and analyze the risk. It showed that the requested access was too broad and would violate our internal policy. Using FireMon Security Manager, I identified the overly permissive access, narrowed the rule to a specific source, destination, and the port, checked the rule conflict and the redundancy, verified it met compliance requirements. Then I approved the least privilege rule instead of the original one. This prevented unnecessary exposure and kept the firewall policy clean.
What is most valuable?
Here are the best features which are offered by FireMon Security Manager: firewall policy analysis and optimization, risk impact and analysis, change management automation, compliance monitoring and reporting, and visibility across multiple firewalls.
Policy analysis and risk impact made the biggest difference for my team. It quickly identifies overly permissive or unused firewall rules, helping us reduce risk, clean up policies, and save time on manual reviews.
FireMon Security Manager has improved our organization by reducing risk, saving time, and improving compliance. It helps us quickly identify overly permissive rules, automate policy reviews, and maintain audit-ready reports. As a result, firewall changes are safer, manual effort is lower, and the overall visibility across the network is much better.
We saw about a forty to fifty percent reduction in the time spent on manual firewall rules reviews after using FireMon Security Manager. Compliance also improved. Audit preparation time dropped by sixty percent. Additionally, we reduced overly permissive or unused rules by roughly twenty-five to thirty percent.
What needs improvement?
The UI can be improved, including UI performance and navigation, and faster data refresh. Easier initial setup would be beneficial for new users. These areas can be improved by FireMon Security Manager.
For how long have I used the solution?
I have been working in my current field for almost five years.
What do I think about the stability of the solution?
FireMon Security Manager is very stable.
What do I think about the scalability of the solution?
Scalability is very good.
How are customer service and support?
Customer support is moderate.
How was the initial setup?
I chose eight out of ten because FireMon Security Manager delivers strong value in the policy analysis, risk visibility, and the compliance automation. It significantly reduced manual efforts, improves firewall rules, and makes audits much easier.
What about the implementation team?
I have a partner business relationship with this vendor.
What's my experience with pricing, setup cost, and licensing?
My experience with pricing and licensing for FireMon Security Manager was generally positive, but on the higher side. The cost is typically subscription-based and depends on the number of devices or firewalls being managed. It was on the higher side.
What other advice do I have?
My advice is that if you are not an enterprise customer, then this solution is particularly not for a small customer because it is a use case for the enterprise customer, such as Bajaj, banks, and similar organizations. FireMon Security Manager is not the right fit for smaller organizations. I would rate FireMon Security Manager eight out of ten.
Abhijeet Chaskar
Automated policy analysis has reduced audit time and improves compliance across multi-vendor firewalls
Reviewed on Apr 26, 2026
Review from a verified AWS customer
What is our primary use case?
My main use case for FireMon Security Manager is continuous firewall policy monitoring and compliance management, and I typically use this solution for analyzing firewall rules across multiple firewalls such as FortiGate or Palo Alto, identifying risky or non-compliant configurations and maintaining a clean and optimized rule base.
A specific example of how I use FireMon Security Manager for firewall policy monitoring or compliance management is that I regularly audit firewall rules. FireMon scans policies across devices, highlights unused rules, overly permissive access, and any rule that violates compliance, allowing me to review and clean up rules based on its recommendations.
What is most valuable?
The best feature FireMon Security Manager offers is the policy analysis feature, as it deeply inspects the firewall rules, and it also works with different firewall brands, making these two things very useful.
FireMon's deep inspection of firewall rules helps me in my daily work by deeply analyzing the firewall rules of all the firewalls integrated with the solution, evaluating the logic and behavior of the rule base, including rule usage, such as rule relationships and whether any shadow or redundant or overlapping rules are present, and it provides the risk level of open ports defined by any rule or exposure, making its compatibility with different firewall brands significantly beneficial for my team.
FireMon Security Manager has positively impacted my organization by being helpful in analyzing firewall policies, better controlling risks, reducing risky configurations, and improving the compliance readiness environment.
It improved compliance readiness as I have seen a better environment and found the solution enables faster policy reviews, typically involving less time in this solution because it works automatically, meaning I do not have to do anything manually.
What needs improvement?
FireMon Security Manager is working well and providing great features with full visibility across all firewalls, so I do not see any improvement needed at this time.
For how long have I used the solution?
I have two years of experience using FireMon Security Manager.
What do I think about the stability of the solution?
FireMon Security Manager is stable.
What do I think about the scalability of the solution?
FireMon Security Manager's scalability is excellent, as it can handle multiple firewalls at a time.
How are customer service and support?
Customer support is excellent in their technical knowledge, and they are able to solve complex technical issues.
I would rate customer support a nine out of ten.
Which solution did I use previously and why did I switch?
I have not switched from a different solution, as I have been using FireMon Security Manager since the beginning.
What about the implementation team?
I purchased FireMon Security Manager through the AWS Marketplace .
What was our ROI?
I have seen a great return on investment, as I am able to save time for my team along with money savings.
I have seen that audit preparation has been reduced to a few hours compared to previously taking days or weeks, resulting in almost 60 to 70% time savings, and it has reduced the efforts in rule analysis and cleanup by 40 to 50%.
Which other solutions did I evaluate?
I have not evaluated other options before choosing FireMon Security Manager.
What other advice do I have?
My advice to others looking into using FireMon Security Manager is that any mid-sized organization with a hybrid environment, especially those with multi-vendor firewalls, should consider this solution as a game changer, as it helps in compliance readiness, policy analysis, or policy cleanup, so I highly recommend considering this solution as one of the best options. I would rate this solution an eight out of ten overall.
Which deployment model are you using for this solution?
Public Cloud