On This Page
Open Policy Model
Overview
The Tufin Open Policy Model (OPM) is an SDK that allows monitoring firewall devices that are not supported out-of-the-box by TOS. OPM is an abstraction layer that models device properties, routing, and security policy rules.
To add support for a device that is not supported out-of-the-box, ask your account team to involve Tufin Professional Services. Tufin PS will investigate whether an OPM agent can be developed that identifies the information that TOS needs in order to see and use your device.
How Does it Work?
The OPM agent serializes relevant device changes and reports them to TOS. All the supported features such as Rule Viewer, Violations, and Topology will be able to support all OPM-modeled devices.
The OPM architecture includes the device, an OPM Agent, and TOS.
-
Device: Physical device that the customer wants TOS to monitor, for example a standalone devices or a managed device.
-
OPM Agent: Software that connects the device to the TOS server by converting device language to OPM language that TOS understands.
-
TOS Server: Server where TOS runs.
To connect an OPM device to SecureTrack, see Device Viewer.
OPM Feature Support
The following table shows the TOS features that are supported depending on what was developed in the OPM Agent:
|
Tier |
SecureTrack+ |
SecureChange+ |
Enterprise |
|||||||
|---|---|---|---|---|---|---|---|---|---|---|
|
Use Case |
Policy Management |
Compliance |
Audit |
Cleanup |
Path Analysis |
Automatic Target Selection |
Risk Analysis |
Automation Design |
Automation Verification |
Provisioning |
| Features |
|
|
|
|
|
|
|
|
|
|
Device Viewer
Permissiveness
Includes matching rules
Was this helpful?
Thank you!
We’d love your feedback
We really appreciate your feedback
Send this page to a colleague