Difference between revisions of "Main Page"

From securityrouter.org, an OpenBSD-based firewall
Jump to: navigation, search
Line 3: Line 3:
 
| style="text-align:center; white-space:nowrap; color:#000;padding-right: 20px" |
 
| style="text-align:center; white-space:nowrap; color:#000;padding-right: 20px" |
 
<div style="font-size:162%; border:none; margin:0; padding:.1em; color:#000;">The '''securityrouter.org''' project,</div>
 
<div style="font-size:162%; border:none; margin:0; padding:.1em; color:#000;">The '''securityrouter.org''' project,</div>
<div style="top:+0.2em; font-size:95%;">an OpenBSD-based firewall and router software distribution.</div>
+
<div style="top:+0.2em; font-size:95%;">an OpenBSD-based firewall and router.</div>
 
| style="font-size:95%;padding-right:20px" |
 
| style="font-size:95%;padding-right:20px" |
 
* '''Current version'''
 
* '''Current version'''

Revision as of 11:37, 11 April 2016

The securityrouter.org project,
an OpenBSD-based firewall and router.
  • Current version
  • Software 3.7
  • OpenBSD 5.9

The securityrouter.org project is a network operating system and software distribution based on OpenBSD, with the main differentiator being the single, revision-managed, clear-text configuration file with soft re-configuration (atomic commits) editable from CLI and web interface, and documented security architecture.

In general, it's a routing platform with security and VPN features. It aims to be a replacement for proprietary solutions like Cisco IOS and Juniper Junos. You can download it for free and run it from (for example) a USB stick in a x86 computer (anything from the affordable ALIX to high end systems with 10GE cards), or as a virtual machine. New user are encouraged to read the getting started page.

Background

It's developed and maintained by Halon Security, although their primary business is a hosting-grade, scriptable email gateway (offering anti-spam, among other things). It came to life because we wanted a router/firewall with Unix root access, strict security architecture, APIs and a beautiful configuration file that applied atomically (enabling for example rollbacks without rebooting). The file system is read-only, enabling it to be run from USB thumb drivers or CompactFlash cards. It doesn't need to be "installed", the software can be written directly onto for example a USB stick. The system is a mix of open (web interface, system scripts, LCD interfaces, patches, OpenBSD) and closed (backend) source.

Get started

Management

Network

System