Easy to Use and Powerful—Highly Recommended
What do you like best about the product?
Easy to use , powerfull and quick to freeze a problematic pc
What do you dislike about the product?
nothing yet :-) maybe that i should of got it earlier
What problems is the product solving and how is that benefiting you?
Latteral movement whithin some of our flat network subnet
Effortless Microsegmentation and Fast Troubleshooting with Illumio
What do you like best about the product?
The microsegmentation is its biggest feature. What I like most is the ease in configuration and implementation. Troubleshooting can be done faster as the configuration is simple and easy to understand
What do you dislike about the product?
None. When compared to other firewalls, Illumio is the easist to implement and troubleshoot.
What problems is the product solving and how is that benefiting you?
The ease of implementation and configuration. Have not encountered bugs that would causes impact to the traversing traffic as compared to other firewalls. Easy to troubleshoot as well so saves us time isolating issues
Easy Segmentation and Security with Illumio
What do you like best about the product?
I like Illumio because it's easy to use and easy to administrate. The UI and agent installation and configuration are straightforward, which makes it easier compared to other products.
What do you dislike about the product?
none
What problems is the product solving and how is that benefiting you?
Illumio helps with segmentation and security by restricting ports and isolating EOL servers. It's easy to use and administer, thanks to its intuitive UI and straightforward agent installation and configuration.
Revolutionizes Zero Trust with Effortless Micro-Segmentation
What do you like best about the product?
Illumio is among the most impressive technologies I have encountered for supporting a zero trust approach. It greatly simplifies the process of implementing micro-segmentation.
What do you dislike about the product?
I think there is always potential for improvement. My main issue is the inability to stream logs directly to a SIEM, which I find limiting. Aside from that, I consider it to be an excellent product.
What problems is the product solving and how is that benefiting you?
A solid cybersecurity strategy always begins with visibility, and Illumio delivers the level of visibility needed to make informed decisions about securing communications between workloads.
Effortless Cybersecurity with Stellar Support
What do you like best about the product?
I love Illumio for its ease of implementation, which simplifies integrating the system into our network environment. This feature significantly reduces the time and resources needed for setup. Moreover, I appreciate that Illumio efficiently organizes communications in a way that enhances security and essentially eliminates the risk of lateral movement, providing a robust defense against potential cyber-attacks. Additionally, the quality of after-sales support offered by Illumio is commendable, as it ensures continuous assistance and resolution of any issues that may arise post-implementation, thereby enhancing the overall user experience.
What do you dislike about the product?
I find compatibility with legacy operating systems to be lacking.
What problems is the product solving and how is that benefiting you?
I use Illumio to enhance cybersecurity by microsegmenting our OT Networks, organizing communications securely, and reducing lateral movement risks during attacks.
we LOVE Illumio - one of the best products we've ever seen
What do you like best about the product?
Illumio is the best product we use as a company IT-wise. It literally keeps us safe and is a tremendous troubleshooting tool as well! It is extremely easy to use, and tagging our servers via the import csv utility is a great feature we've come to love.
What do you dislike about the product?
Sometimes it works "too" good, but that is why we have it. It locks down traffic like it's supposed to!
What problems is the product solving and how is that benefiting you?
Illumio helps us decide which traffic gets in, and which traffic gets out. It helps us lock down our files shares, as well as segment internal traffic to only traffic that we have to have open for business continuity.
Solid platform for microsegmentation, reducing ACL complexity, and ransomware protection
What do you like best about the product?
My org uses Illumio for intra-VLAN protection, ransomware blast radius reduction, and as a more flexible alternative to our mess of ACLs.
It's letting us reduce our ACL sprawl, which was nearing hardware limits (CAM table exhaustion).
Illumio’s policy model and VEN install are baked into our server deployment process now, which I recommend all customers do.
I work in both networking and security, and Illumio bridges both worlds well. I touch it frequently to manage access across all sorts of servers and traffic flows, and I have no complaints about performance or UI.
Great for network or security folks trying to shrink blast radius and ditch legacy ACL messes.
What do you dislike about the product?
There is definitely a learning curve, but once you wrap your head around the policy model, it clicks.
Only gotcha I've seen is that changing a server IP often requires reinstalling the VEN.
What problems is the product solving and how is that benefiting you?
Definitely makes network access changes easier than going through our usual ACL deployment process. And I like that server admins can use it to check traffic flows to see if they're having any network issues before talking to me.
Effortless Firewall Rule Management, No Drawbacks Yet
What do you like best about the product?
Easily translate business requirements into host firewall rules, avoiding setting up complicated rules at perimeter firewall
What do you dislike about the product?
There is nothing that I dislike regarding Illumio.
What problems is the product solving and how is that benefiting you?
The ransomware protection is effective, and it makes it easy to block unnecessary east-west traffic.
Have created granular security policies based on roles and application behavior
What is our primary use case?
The main use case for Illumio is providing micro-segmentation where we don't want to segment the network based on IP addresses but rather segment them based on roles, applications, and environments. Everything that we do from the segmentation point of view is based on the label. Based on the label, we prepare the policies, and then we do the segmentation, which gives us a more granular approach and limits the attack surface from happening. Now the attack surface is limited, and this will happen if any attack occurs; we stop the lateral movement of the attack because we have segmented the environment.
I am managing a project where the client needs Illumio, and we are helping with their environment on the segmentation approach. They have many applications in their environment, and we support them by understanding the environment and applications they have. When we have the full inventory of their applications, we ask them to do the labeling in Illumio based on information such as how many applications they have, what labels we have to give them, and under what categorization those labels should be. For example, which application should be part of this location, this role, this environment, and this application. Based on that, we have created an approach to help our client onboard the applications, wherein we have many activities happening. For example, we review their traffic, conduct ring-fencing, and understand what traffic goes through. After a few days, we understand the required traffic, based on that we draft the policy, have the policy review session, and then finally enforce the application. All of this occurs alongside the process from the client end; they follow all the processes, and we handle the technical part before finally enforcing the application.
Illumio is deployed in the cloud environment in Azure.
What is most valuable?
The best feature that Illumio offers is that we can easily understand how to label the applications, how to install Illumio agent on the client machines, how to install the agent on the servers, and how to do the ring-fencing. The log analysis is very simple, and we can map the traffic very easily, such as the traffic view and map view. We have many views to do that, and then we have a topology environment where we can expand the topology and understand how we want to prepare our policy based on the requirement. These are some of the very good use cases that Illumio provides, which none of the other vendors can offer in such an easy and usable way.
The most important feature is the traffic review analysis, where we use the draft view and the reported view that helps us understand how the application interacts with other applications in the environment, and based on that, we are able to define the policies.
It has increased the business for the organization. We are creating business by supporting the client. The client is getting more security and is more confident in their network because they now have the micro-segmentation feature in their environment. This is new technology and that's how it helps the organization as a whole. The clients we support are benefited, and at the same time, we are making money out of it. This is definitely a good approach.
After implementing Illumio, there has been significant progress. Most of the app owners now understand what applications are communicating, how these applications interact with others, and we are more aware of which application is talking to what other servers and applications, and their roles. For instance, whether an application is talking to the DB server or an app server. We have a more granular understanding of the traffic view. Additionally, after implementing Illumio, there is greater segmentation, and fewer incidents are occurring. There have been times when an attack was halted from expanding laterally.
What needs improvement?
Illumio can be improved if we have more interactive sessions with the tech team. The support of Illumio can be better since it's a new tool, and people can explore it more. There could also be more examples of how the automations can be done using Illumio.
For how long have I used the solution?
I have been using Illumio for the last two years.
What do I think about the stability of the solution?
The solution is very stable.
What do I think about the scalability of the solution?
It is very good. We can expand it wherever we want. We can use it in container environments, install it on servers, and integrate machines in the environment. Scaling it to a large level is not an issue for us.
How are customer service and support?
Customer support is good.
How would you rate customer service and support?
Which solution did I use previously and why did I switch?
We were about to experience Guardicore, but Guardicore was costly. Illumio is top in the market, and from a cost perspective, it is cheaper than Guardicore, so we chose that.
What was our ROI?
Time has definitely been saved.
What's my experience with pricing, setup cost, and licensing?
My experience was really good because I think it's not very expensive if we compare it with Guardicore. I believe that's a good product.
What other advice do I have?
I would advise others considering using Illumio to have a basic understanding of networking and some usage of protocols. They should be able to understand what TCP/IP is so they can look into the connections and understand what's happening. Some basic knowledge of networking is required before using Illumio, as well as the concept of micro-segmentation. We should have a proper purpose for using this tool.
I believe the additional thoughts for Illumio are that it's the best in the market. It will remain the best in the market if they continue working on addressing bugs and if customer support is helpful, friendly, and available all the time; I think nobody is going to lose Illumio at all.
We are the partner.
On a scale of 1-10, I rate Illumio a 10. It's best in Gartner. It's the top product in the market for micro-segmentation. The GUI is very simple, and I think there could be nothing better than this.
Illumio is helping us achieve Zero Trust by enforcing least- privilege access our workloads.
What do you like best about the product?
Illumio is a key technology in our journey to zero trust by enforcing least-privilege across our workloads.
The dynamic laelling means we can deploy micro-segmentation quickly and at scale.
By implementing Selective Enforcement as a first phase we can achieve an initial level of segmentation quickly across our assets.
The move to a Unified console where one can have visibility and enforcement of policies across both on-premise adnd cloud assets.
By leveraging the Illumio API we have a robust integration with many internal systems for automation including our CMDB, IP Management tools, virtualization platform and directory services.
What do you dislike about the product?
High utilization of Memory on some servers by the Illumio agent.
Some issues with performance of the SaaS console although this seems to have been improved since moving to a dedicated instance.
Some issues experienced with the visualization of logs in explorer.
Would like to see a clearer schedule on our move to the Unified console.
What problems is the product solving and how is that benefiting you?
Illumio is a key technology in our journey to zero trust by enforcing least-privilege across our on-premise workloads including both endpoints and servers. This is a key project within the company's Cyber Security Program.
