UTM3: L3 Firewall and Gateway

As an IP gateway with extensive features, firewalls from the UTMx series serve to harden networks and protect internal assets by implementing segmentation and further methods to secure and restrict data exchange in between networks.

The concept is optionally highly available (AEC-3) and consists of various security components:

  • OSI Layer 3 Stateful Packetfilter
  • TCP/IP Session Migration + Multipath Routing
  • Zeek/Bro Network Security Monitoring + NIDS
  • Caching Proxy Server w/ HTTP Virus Scanning
  • Mail Gateway: Spamfilter, Virus Scanning, Webmail+GPG
  • VPN Gateway: IPsec, OpenVPN, WireGuard
  • RPiX: Rasbperry Pi H/W for transparent IPSEC VPN
  • Mandatory Access Control (MAC)
  • Protection against Bruteforce + DoS Attacks
  • Monitoring interface for Syslog/NetFlow
  • System operating data visualization
  • Maintenance optionally including Incident Response