About Policy Analyzer and Optimizer

AIOps for firewalls leverages artificial intelligence (AI) and machine learning (ML) to streamline and enhance the management and security of network firewalls. By using dynamic baselines and advanced forecasting models, AIOps can detect policy anomalies and predict potential issues before they escalate, ensuring proactive maintenance and stability. One of the key functionalities of AIOps is the Policy Analyzer and Optimizer. See AIOps Insights to know more about the various other functionalities that AIOps provides.

Secure Firewall Threat Defense devices with extensive access control policies, especially those generated through the Secure Firewall migration process, may have numerous duplicate or shadowed rules. Such bloated policies with unoptimized rulesets can lead to excessive consumption of device memory, delayed loading of rules, and long search duration, resulting in inefficient security policy enforcement, reduced network speeds, and extended deployment durations.

To deal with such situations, Security Cloud Control provides Policy Analyzer and Optimizer, which is an intelligent cloud service that can analyze security policies, detect anomalies, and provide recommendations on remediations that can be performed to optimize the policies, thereby improving the Firewall's performance. The Policy Analyzer and Optimizer can analyze policies both in the Cloud-delivered Firewall Management Center and the On-Premises Firewall Management Centers that are onboarded to Security Cloud Control. In addition, this feature can do the following:

  • Provide comprehensive visualization of policy health information, including an analysis overview and policy insights based on aggregate hit counts.

  • Analyze policies regularly at scheduled intervals or whenever preferred.

  • Detect rule anomalies, such as duplicate rules, object overlap in rules, and expired rules.

Analysis Summary

Note that the Policy Analyzer and Optimizer can be launched from Security Cloud Control's Services page, Monitor > Insights & Reports > AIOPs Insights > Policy Analyzer and Optimizer on the left pane, and On-Premises Firewall Management Center's Access Control policies page for the administrator's convenience.