Features
Everything you need to manage, automate, and secure your decentralized firewall infrastructure — from a single command line.
Policy and Config Templating
Define firewall policies once and apply them everywhere. Create reusable templates with variable substitution, inheritance hierarchies, and conditional logic. Ensure configuration consistency across hundreds of devices while retaining the flexibility to override at any level — from organization-wide defaults down to individual device exceptions.
Zero Inbound Remote Access
NetDefense agents initiate all connections outbound, meaning your firewall devices never need open management ports. No VPNs, no port forwards, no attack surface expansion. The agent maintains a persistent WebSocket connection to the broker, pulling tasks and pushing status updates — all while your security perimeter remains fully intact.
One-Click Overlay WireGuard Mesh
Spin up a fully encrypted WireGuard mesh network across your entire device fleet with a single command. NetDefense automatically handles key generation, peer configuration, and route distribution. Connect remote offices, cloud VPCs, and edge devices into a unified overlay network — no manual tunnel configuration required.
Workflow Automation
Automate repetitive operational tasks across your entire firewall fleet. Build multi-step workflows that push configurations, trigger syncs, run health checks, and generate reports — all from the CLI or CI/CD pipelines. Integrate with GitHub Actions, GitLab CI, or any automation platform via the REST API for fully hands-off infrastructure management.
Backup to Custom S3 Storage
Automatically back up device configurations to any S3-compatible storage — AWS S3, MinIO, Backblaze B2, or your own on-premise object store. Schedule periodic snapshots, retain version history, and restore configurations with a single command. Your backups, your infrastructure, your control.
MCP Fueling for AI Agents
Supercharge your security operations with AI. NetDefense exposes a Model Context Protocol (MCP) interface that lets AI agents audit configurations, detect anomalies, generate compliance reports, and execute fleet-wide tasks through natural language. Connect Claude, GPT, or any MCP-compatible agent to transform how you manage network security.