The Roadmap
Work is being done.
Delivered
- NetDefense Control Plane API, NDCLI, and NDWeb dashboard
- OPNsense device agent (NDAgent)
- Policy templating: snippets, templates, OUs
- Configuration sync, rollback, and scoped variables (including secrets)
- WireGuard mesh networks with auto-firewall rules
- Encrypted S3-compatible backups
- Remote access tunnels (PathFinder)
- Browser-based device access (in-app terminal and WebAdmin)
- On-demand and scheduled run actions on devices
- Plugin and package installation on devices
- Unbound DNS snippet types
- AI agent integration via MCP (full NDCLI parity)
In Progress
- Additional snippet types (authenticators, dashboards, routes, certificates, etc.)
Planning
- Network policy advisors
- Security posture
- Compliance reports
- SIEM
- SOAR
Two Decades in the Making
NetDefense wasn't born as a startup idea. It was built by engineers who spent 20+ years in the trenches of real infrastructure — and never stopped working on the problem.
The Problem
SMBs needed real network security, but the market offered nothing both capable and affordable. Firewalls were either too expensive, too complex, or designed for environments that looked nothing like small business reality.
NetDefense v1
An x86 security appliance running FreeBSD, built on open-source technologies. Everything managed through a unified web interface backed by PostgreSQL.
Evolution
The platform grew alongside the changing landscape of SMB connectivity and managed services, supporting dozens of customer networks in production.
Wayback MachineDiscontinued
The market shifted. Commercial security products became easier to resell and support. Building a custom platform stopped being the most viable path.
"The work never stopped. We kept building, operating, and learning — watching the open-source ecosystem evolve, waiting for the right moment."
Finding OPNsense
While tracking the evolution of open-source firewall projects, we found a deep synergy between our ideas and the OPNsense project. Its philosophy matched what we believed a security platform should be — and we started deploying it across our managed infrastructure.
Integration Begins
The ecosystem had matured. Hardware was affordable, open-source tools reached enterprise grade. We decided to build the NetDefense vision — starting with an OPNsense plugin as the foundation for everything to come.
NetDefense as an Open Tool
Not a reboot. A continuation. The same vision, with far stronger foundations — designed from day one for MSP operations and built on the platform we know best.
See what we're buildingThe Engineers
No managers. No advisory boards. Just engineers who build.
Marcos Machado
Infrastructure & Network Security
Years of hands-on work with networks, security architecture, and infrastructure platforms. Focused on building systems that are resilient, predictable, and engineered to operate under real-world constraints.
Leonardo Kamache
Operations & Delivery
Brings the operational perspective that makes complex systems succeed in the real world. Focused on delivery, implementation, and making sure security infrastructure can be deployed and maintained consistently.
Alfredo Saldanha
Systems Telemetry & Automation
Focused on telemetry, monitoring, and automation — the foundations that allow secure infrastructure to scale. His work is centered around observability, operational insight, and systems that reduce friction.
Want to join the team? hello@netdefense.io
Ready to take control?
Install NetDefense and start managing your firewall fleet.