Home Page | Skip to Navigation | Skip to Content | Skip to Search | Skip to Footer

OPSEC Partners

Athena Security

Product Version Certified: Athena FirePAC
Certified for use with: NG, NGX, and Security Management R70

Product Description: Athena FirePAC is a firewall analytics tool that engineers can download, try and purchase to understand the meaning and impact of changes, and to improve the efficiency of rule base design. Available in several affordable focused solution modules, FirePAC increases firewall performance and effective risk mitigation to critical hosts.
 
Key Features and Benefits
OPSEC Integration		 Clear Athena Security
 

Company Description: Athena offers infrastructure analysis tools that identify the precise relationship between firewall rules and network services in a single device or across a complex network. With a comprehensive focus on configuration data, Athena helps network and security engineers perform what-if analysis that reduces the reliance on diagnostics and validation by testing. Over 300 companies turn to Athena products, Athena FirePAC and Athena Verify, for standardized and consistent intelligence to reduce the time and effort required for policy management on network security devices.

Free FirePAC download
 
Key Features and Benefits

Athena FirePAC's increases the speed, accuracy and efficiency to analyze firewall polices.
A highly flexible and configurable tool, FirePAC is available in the following standalone modules that can be added together or upgraded for a single firewall at a time, or an entire mixed vendor firewall infrastructure.

Check Point Migration Support

  • Accelerate the migration process dramatically and ensure that the target policies are equivalent to the original. Athena FirePAC is the only solution that can provide remedies for the errors introduced through the conversion process.

Comprehensive Risk Mitigation

  • Identifies risks to critical hosts based on overly permissive rules or rules allowing dangerous services.
  • Provides flexibility to define your own custom security zones and create new checks or modify existing checks to reflect unique business requirements.
  • Takes into account what networks are reachable from each interface in the firewall based on ACLs, routing and anti-spoof settings to provide a more precise risk analysis.

Firewall Rule Cleanup and Optimization

  • Finds every possible type of structural rule redundancy to find more rules for removal than any other product.
  • FirePAC can also find all unused rules based on log history.
  • Recommends optimal rule order that places the most used rules as far up as possible towards the top of the rule base without causing any disruptions to critical business services.

Rule/Object Search across your firewall inventory

  • Finds all references to an object including parent and child relationships.
  • Cuts through objects with multiple levels of membership hierarchies to pinpoint the services and addresses allowed or denied by a rule

PCI Audit

  • Produces automated PCI audit reports that go beyond a checklist for minimal compliance. FirePAC computes permitted traffic flows through the firewall to determine what is allowed to reach your credit cardholder data.
 
OPSEC Integration
Using the Objects_5_0.C file, rulebases_5_0.fws file and the routes file as inputs, Athena FirePAC examines how data flows through the firewall by analyzing several factors such as rule order, anti-spoof, NAT control, routing, directionality, interface specific rules, default behavior and VPNs, to determine exposures to critical hosts. FirePAC’s analytics were tested for accuracy and completeness to achieve OPSEC certification.
Additional Information

ArrowAthena FirePAC Features Summary
ArrowAthena FirePAC Datasheet
ArrowEffective Solutions for Check Point Rule Cleanup
ArrowAthena Presentation