Professional Features

Enterprise-grade tools for managing hundreds of OPNsense firewalls from a single location

Single-tenant platform • v2.3.0

Multi-Firewall Dashboard

Monitor unlimited OPNsense firewalls from a single pane of glass.

  • Real-time health scoring (0-100) based on connectivity, versions, uptime, and configuration
  • Quick actions: reboot, update, backup, configure
  • Custom tagging and organizational structure
  • Search and filter across entire fleet
  • Hierarchical organization by customer, location, or function
  • Bulk operations across multiple firewalls

Lightweight Agent System (v3.6.0+)

Python-based agent with 5-minute check-in intervals and automatic self-healing.

  • Minimal resource footprint (<10MB RAM, <1% CPU)
  • 5-minute check-in intervals for real-time monitoring
  • Automatic self-healing and restart capabilities
  • Collects system stats (CPU, memory, disk, load)
  • Interface status and traffic statistics
  • Gateway status and latency monitoring
  • Package versions and available updates
  • Temperature sensors (if available)

Secure Remote Access (v2.2.0+)

On-demand SSH tunnels with double encryption and no VPN required.

  • Architecture: Browser → Nginx HTTPS → SSH Tunnel → Firewall:80
  • Double encryption layer (HTTPS + SSH)
  • No VPN required, works from anywhere
  • Automatic session management (15-min idle, 30-min max)
  • ED25519 SSH keys (stronger than RSA 4096)
  • Per-firewall SSH key pairs with source IP restriction
  • Automatic orphaned tunnel detection & cleanup
  • 2-3 second tunnel creation time
Permanent SSH Rules

Single "Allow SSH from OPNManager" firewall rule - no temporary rule creation/deletion needed.

  • Instant tunnel availability
  • Reduced API calls to firewall
  • Zero credential storage (SSH keys only)

AI-Powered Security Analysis

Automated security scanning with multiple AI providers.

  • Supported AI Providers: OpenAI (GPT-4, GPT-4-turbo), Anthropic (Claude 3.5, Claude 3), Google Gemini, Ollama (local/self-hosted)
  • Configuration scanning with automatic sanitization (removes sensitive data)
  • Security grading system (A+ to F)
  • Risk level classification (Low/Medium/High/Critical)
  • Log analysis for threat detection (port scans, brute force, DDoS)
  • Suspicious IP identification with GeoIP data
  • Threat confidence scoring and recommendations
  • GDPR/HIPAA compliant (PII sanitization, encrypted API keys)
Per-Firewall AI Settings
  • Enable/disable automatic scanning
  • Scan frequency (daily/weekly/monthly)
  • Include log analysis toggle
  • Preferred AI provider selection
  • Manual "Run Scan Now" button
  • Historical report tracking

Network Diagnostic Tools

Built-in diagnostics that run directly from the firewall.

  • Ping: Test connectivity with customizable packet count
  • Traceroute: Route path analysis with hop limit control
  • DNS Lookup: Query resolution for A, AAAA, MX, TXT, NS records
  • Real-time output terminal
  • Execute commands directly via SSH
  • No firewall GUI needed

Automated Backup System

Comprehensive backup and restore capabilities with integrity verification.

  • Nightly backups at 2 AM (configurable)
  • On-demand manual backups
  • XML format (OPNsense native)
  • Size tracking and compression
  • One-click restore functionality
  • Download backups for offline storage
  • Configuration comparison viewer
  • Backup descriptions and notes
  • Point-in-time recovery and audit trail
  • Automatic cleanup of old backups
Backup Retention & Recovery
  • Historical backup retention
  • 99.8% backup success rate
  • Encrypted storage with integrity checks
  • Configurable retention policies

Comprehensive Health Monitoring

Real-time health scoring based on multiple factors.

  • Connectivity (35%): Can the manager reach the firewall?
  • Version/Updates (25%): Firmware current? Updates available?
  • Uptime (20%): System stability over time
  • Configuration (15%): Backups recent? Agent reporting?
  • Performance (5%): Resource utilization normal?
  • Real-time status indicators
  • Alert thresholds (configurable)
  • Historical health tracking
Health Score Components
85/100
All systems operational Minor issues detected Critical action required

Traffic Analytics & Graphing

Advanced analytics with historical data and trends.

  • Interface traffic charts (RX/TX)
  • Historical data with Chart.js visualization
  • SQL window functions (LAG) for calculations
  • Per-interface bandwidth trends
  • Customizable time ranges
  • CPU usage monitoring
  • Memory utilization tracking
  • Disk space monitoring

Direct SSH Command Execution (v2.1.0+)

Execute commands instantly for system management.

  • Bypass command queue for instant operations
  • System updates (pkg update && pkg upgrade)
  • Package installations
  • Network diagnostics
  • Configuration reloads
  • Base64 encoding for special characters
  • Full output capture
  • Error handling and logging
Queue-Based Commands

Also available for backwards compatibility:

  • Status tracking (pending/running/completed/failed)
  • Historical command log
  • Execution timestamps

Additional Features

Comprehensive tools for enterprise firewall management

Advanced Alerting

Intelligent alert system with customizable thresholds, escalation policies, and multiple notification channels.

Reporting & Analytics

Comprehensive reporting with customizable dashboards, trend analysis, and compliance reports.

RESTful API

Full API access for integration with existing tools and custom automation workflows.

User Management

Advanced user management with role-based permissions, SSO integration, and audit logging.

Configuration Management

Template-based configuration deployment with version control and change tracking.

Mobile Ready

Responsive design that works perfectly on desktop, tablet, and mobile devices.

Ready to Get Started?

Experience the power of centralized OPNsense management today.

View Demo Contact Sales