UTMFW

Unified Network Security: Empowering Your Defenses with FOSS

UTMFW (formerly ComixWall) goes beyond conventional protection, providing a comprehensive next-generation defense solution complete with SSL inspection, powered by its innovative SSLproxy.

Download UTMFW View on GitHub

What is UTMFW?

UTMFW is the only FOSS next-generation firewall built specifically for OpenBSD. It provides comprehensive UTM services with SSL inspection, IDS/IPS, Web filtering, Virus and Spam scanner, E-mail filtering, and much more. UTMFW's comprehensive UTM services are managed through its intuitive web and Android interfaces for seamless control.

Threat Prevention

Proactive defense against malware, intrusion attempts, and various cyber threats.

Content Filtering

Granular control over web access and application usage to enforce policy.

SSL Decryption

Visibility into encrypted traffic for enhanced security inspection.

UTMFW in Action

Get a glimpse of UTMFW's powerful and intuitive interfaces, designed for seamless network security management on both web and mobile. Click an image to zoom and pan!

Key Features of UTMFW

SSL/TLS Inspection

Gain deep visibility into encrypted traffic for comprehensive security analysis and threat detection.

IDS/IPS Capabilities

Detect and prevent various network intrusions and malicious activities in real-time.

Content & Web Filtering

Control and filter web access, ensuring safe browsing and adherence to organizational policies.

Virus & Spam Protection

Comprehensive scanning for viruses and spam across network traffic and email.

Advanced Email Filtering

Protect against phishing, malware, and other email-borne threats with robust filtering.

Web & Android Interfaces

Effortlessly manage and monitor your firewall from anywhere via dedicated web and Android UIs.

SSLproxy: Deep Dive into Encrypted Traffic

At the heart of UTMFW's advanced security capabilities lies SSLproxy, a unique and powerful SSL/TLS inspection engine. Unlike traditional firewalls, SSLproxy provides unparalleled visibility into encrypted network traffic.

SSLproxy Architectural Diagram (Placeholder)

Why SSLproxy is Unique

  • Unrivaled Decryption: SSLproxy is the only SSL proxy specifically designed to decrypt and seamlessly divert encrypted packets to other programs for in-depth analysis. This unique feature enables a level of inspection unmatched by other FOSS solutions.
  • Comprehensive Threat Analysis: By making encrypted traffic visible, UTMFW can apply its full suite of security services – including IDS/IPS, web filtering, and antivirus scanning – to threats hidden within SSL/TLS sessions.
  • Privacy-Aware: While offering deep inspection, SSLproxy is designed with privacy considerations. It provides granular control over what traffic is inspected and how, allowing organizations to balance security needs with privacy policies.

SSLproxy’s integration ensures that UTMFW offers true next-generation firewall capabilities, protecting your network from sophisticated threats that leverage encryption to bypass security controls.

Get UTMFW Today

Ready to enhance your network security with UTMFW? Download the latest stable version or explore our installation guides to get started.

Download Latest Version Installation Guides

Roadmap & Latest Releases

UTMFW Project Roadmap

Future Development

Explore the future of UTMFW! Our public roadmap outlines upcoming features, enhancements, and strategic directions, driven by community needs and security innovations.

View Full Roadmap

Latest Release: UTMFW v7.7

Released: May 8, 2025

Discover the impactful updates in UTMFW v7.7, bringing significant performance boosts, enhanced security modules, and new capabilities to strengthen your defenses.

Download v7.7 Now