When deploying what we've discussed in this chapter at scale, it can become challenging to visualize and understand true configuration states when troubleshooting. Dome9 helps solves this issue by creating detailed maps of security groups, NACLs, and machines. In addition, Dome9 can integrate into DevOps workflows to scan and flag IaC templates (like cloudformation) for anti-patterns (https://dome9.com/):