Solução robusta de baixo custo
SuperFirewall is the perfect combination of the expertise and know-how of Supernova Tecnologia professionals, leveraged on one of the most respected platforms in the Open Souce world. With this synergy, we deliver a robust Edge Firewall solution, with centralized management and a large list of features.
SuperFirewall is the right solution for companies looking for an Open Source firewall with simplified management as well as for those looking for alternatives to the commercial firewall with expandable licensing, being an excellent alternative to Sonicwall, CheckPoint, Palo Alto, and Microsoft TMG, etc.
​
Our firewall solution is an expert-tested product armed with data network security forensics tools and deployed in a wide variety of business environments, large and small.
​
Get to know the main features:
Simplified management
​
We formatted our tool in such a way that several features that can be incorporated with just one click to the firewall and thus keep only the desired functionalities. The Dashboard displays key information such as link bandwidth usage, CPU consumption, memory, system version, High Availability status, VPN status, and other information that can be added, removed, or arranged with the mouse.
Multiple WAN
​
Allows the use of multiple internet connections that can act together. It is possible to determine the priority of use of the links and thus determine if one will only be used in the failure of the other or if they will be used in Load Balance to apply the available bandwidth. These settings are configured in Gateway Groups to be used in redirection rules. Thus, it is possible to adopt different strategies for user groups, company sectors or servers. If I need to change the link usage settings, just change the gateway groups and all related rules will automatically update. Notifications can be sent via email whenever a link fails.
​
Guaranteed stability
​
Unlike other similar Open Source solutions, our applications have long and stable release cycles. Only exhaustively tested modifications are incorporated into the products. The firewall update is done in an automated way and does not generate downtime. Our solution is not an application to be installed on any operating system. It is a complete distribution based on FreeBSD as an operating system and services built in and tailored to ensure that it will always work as expected. It must be installed on a physical or virtual server with no system available. There is a commercial option where we deliver with hardware for rack allocation.
Packet Filtering
​
Network packets can be filtered by IP address, protocol or port. For each rule, a limit of simultaneous connections can be defined. SuperFirewall can identify the operating system of the computer that made the access and so can allow a Windows station, for example, but block another using Linux. Full support for various types of NAT. Friendly names can be defined (aliased) for hosts, host groups, addresses and ports to simplify packet filter configurations. All traffic can be auditable to identify whether rules are being effective and where packets are being routed. Packet Normalization support to ensure that there are ambiguities in the interpretation by the destination of the packet. Fragmented packets are also reassembled, protecting some operating systems from some form of attack, and discarding TCP packets that have invalid flag combinations.
More features and power for your network:
web proxy
​
We incorporated the renowned Squid proxy for web access optimization. Websites and downloads performed by a user can be stored locally so they can be accessed and instantly displayed to other users. Allows access control by ACL to define access policies by user, groups, addresses and times. Classify websites to simplify address blocking by categories such as sex, chats, online games, streaming video, web radios, etc. Displays managerial reports with denied access, most accessed sites and bandwidth consumption.
Virtual Private Network (VPN)
​
VPN is essential for secure communication, whether site-to-site (headquarters <--> branch office) or site-to-client (external user <--> headquarter). For this we support the Ipsec, openVPN, and L2TP protocols. We provide resources to generate digital certifications through the web interface and automatically create the necessary configurations for Windows and Linux, Android or IOs client configurations. Allows you to view the bandwidth and internet consumed by each active connection and incorporate multiple links for failover or load balancer.
Band control
​
QoS rules can be defined for prioritization, bandwidth guarantee and/or bandwidth limit that users or services will be able to use. This feature allows preserving the use of the internet link and ensuring that a single user will not be able to compromise it when there are other simultaneous accesses. It also allows prioritizing access from some sectors over others, or from services such as VoIP.
High Availability
​
One or more firewalls can be configured in a failover group. If one of them fails, the other will automatically take over and email notifications will be sent. Failures in network interfaces are covered. Ongoing connections are synchronized in real time between firewalls, so if there is a failover event, they will remain active and will be unnoticeable to users. Backups can be scheduled and allow you to completely restore your firewall to other hardware in a matter of minutes.
monitoring
​
In addition to the possibility of integration with Zabbix Server through agents or SNMP protocol, we can activate the Zabbix Proxy function with active encryption on the firewall, safely saving computational resources for this function in your monitoring structure.
And it is already natively contemplated in the solution support for graphics in the RRD standard for viewing statistics on time periods from minutes to years with the following information:
CPU utilization
Total bandwidth consumption and for each interface
Connections Status
Packets processed per second
WAN link latency
Traffic Shaper Queues
Support for information displayed in real time to perform diagnoses that include:
SVG graphics with the bandwidth used in each interface
Bandwidth consumed per user in each queue defined in traffic shaper
CPU, memory, swap and disk usage firewall state table etc.
More resources available
​
IDS and IPS
DHCP Server and Relay
dynamic DNS
PPPoE Server
Ntop
DNS server
Radius Server
HTTP Antivirus
Antispam
Border Gateway Protocol, Optimized Link State Routing and OSPF Routing
Various network analysis tools available
​
We have the signature of the right model for your company:
​
​
SuperFirewall UTM Basic - For small businesses with up to 10 users
SuperFirewall UTM Standard - For companies up to 100 users
SuperFirewall UTM Interprise - For companies up to 3000 users
​
SuperFirewall delivers, varying by model, a large list of resources for your company's IT:
​
Guaranteed stability
Multiple WAN
Packet Filtering
web proxy
Virtual Private Network (VPN)
Band control
Integration Monitoring
High Availability
More features available:
IDS and IPS - Liabilities and Assets
DHCP Server and Relay
dynamic DNS
PPPoE Server
Ntop
DNS server
Radius Server
HTTP Antivirus
Antispam
Border Gateway Protocol, Optimized Link State Routing and OSPF routing
Several tools for network analysis available.
​
​
Whatever your need, we can help you. Fill out the form below and as soon as possible one of our professionals will contact you.
​
​
Does your business depend on securing your networks?
​
So don't just expect them to be protected, get in touch now!
São Paulo - (11) 4210-6186 - Extension 1101
Rio de Janeiro - (21) 2391-5391 - Extension 1101