Understanding the architecture of Untangle NGFW

The Untangle NGFW architecture includes a kernel—Untangle VM (UVM)—and apps.

Untangle NGFW itself runs on the UVM; thus, any traffic directed to Untangle NGFW local services (such as the administration console) will be processed on the UVM. In addition, unlike other Linux products, the network processes (such as routing, NATing, and so on) are done on the UVM and not the kernel.

Untangle applications run on the UVM. When traffic comes to the Untangle NGFW server, the packets' stream will be endpointed on the UVM and reconstructed at layer 7 (the application layer). The data then flows through the applications for scanning, and if passed, the data is eventually put back into new packets and sent on ...

Get Untangle Network Security now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Untangle Network Security by Abd El-Monem A. El-Bawab

Understanding the architecture of Untangle NGFW

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly