NetFoundry Platform

NetFoundry Platform

Transforming Connectivity with Zero Trust Overlay Networking

NetFoundry | Developers

Platform Overview

The NetFoundry Platform is a powerful software stack for secure networking and connectivity. It enables customers to rapidly build and manage zero trust overlay microsegmented networks (AppNets) at scale with ease. Developers and product teams use our SDKs to embed AppNets into applications or utilize our tunnelers for zero trust integration.

Highlights

  • Secure Networking
  • Zero Trust Overlay
  • AppNets at Scale
  • Easy Integration
  • Developer SDKs

NetFoundry Platform

The Modern Zero Trust Networking Platform, transforming connectivity with zero trust overlay networking.
Ziti Controller
Centralized management for overlay networks.
Ziti Overlay Network Routers
Overlay mesh with smart routing and self-healing capabilities.
Overlay Mesh – Smart Routing
A sophisticated overlay mesh network that employs smart routing to optimize data paths.
High Availability – Self Healing
Enhances network reliability through self-healing capabilities.
Ziti Edge SDKs
Tools to embed zero trust networking directly into applications.
Ziti Edge Tunnelers
Secure tunneling for applications unable to embed zero trust directly.
Ziti Edge browZer
Clientless zero trust access to web applications requiring no browser changes.
Ziti Edge zrok
Zero trust peer-to-peer resource sharing.
Ziti Edge Reverse Proxy
Provides secure access to internal services by acting as an intermediary.
Ziti Edge for Devices
Facilitates secure communication between IT, OT, IIoT, and other edge devices.
AppNet Builder
Create software-defined segments within a Ziti overlay network, enabling secure and efficient network customization.
AppNet Manager
Monitor and manage software-defined segments of a Ziti overlay network.
Telemetry and Reporting
Detailed reports, analytics and insights into network usage and performance.

NetFoundry Fabric

Build secure zero trust software-defined networks (SDNs) easily using our NetFoundry Platform, which includes a Ziti controller, Ziti edge routers, and the Ziti Administration Console.
NetFoundry | Platform

Ziti Controller

Centralized Zero Trust management for overlay networks.

Ziti Overlay Network Routers

Overlay mesh with smart routing and self-healing capabilities.

Overlay Mesh – Smart Routing

A sophisticated overlay mesh network that employs smart routing to optimize data paths.

High Availability – Self Healing

Enhances network reliability through self-healing capabilities.

Ziti Edge SDKs

Tools to embed zero trust networking directly into applications.

Ziti Edge Tunnelers

Secure tunneling for applications unable to embed zero trust directly.

Ziti Edge browZer

Clientless zero trust access to web applications requiring no browser changes.

Ziti Edge zrok

Zero trust peer-to-peer resource sharing.

Ziti Edge Reverse Proxy

Centralized Zero Trust management for overlay networks.

Ziti Edge for Devices

Facilitates secure communication between IT, OT, IIoT, and other edge devices.

NetFoundry Edge

Harness secure networking and endpoint software for any application in any environment, IT or OT. You can enhance connectivity and access security at endpoints, enabling secure application development and integration.
NetFoundry | Platform

NetFoundry Console

Centralize your management and administration of your networks and infrastructure with NetFoundry and simplify deployment and management of secure, high-performance overlay networks.
NetFoundry | Platform

AppNet Builder

Create software-defined segments within a Ziti overlay network, enabling secure and efficient network customization.

AppNet Manager

Monitor and manage software-defined segments of a Ziti overlay network.

Telemetry and Reporting

Detailed reports, analytics and insights into network usage and performance.

The first zero trust native overlay networks

NetFoundry is the first to build zero trust into the network. Spin up zero trust native overlays, in minutes, for a single AI application or an entire WAN.

Deploy for IT, OT or IoT

Includes agents for Windows, Linux, macOS, iOS, Android, containers, VMs, eBPF daemons. Pre-built into proxies, browsers, modems, edge servers, firewalls. Use SDKs to integrate into any software.

Reliability and performance

NaaS includes HA, dynamic optimization, ingress and egress load balancing, across over 100 PoPs, with 24×7 enterprise support and SLAs. On-premises includes features and tools to get 99.999% uptime.

On-premises, hybrid or NaaS

Deploy in air-gapped sites, OT, multicloud and everything in between. Every overlay is zero trust native with all zero trust functionality built in and prebuilt integrations. NaaS spans over 100 sites.

NetFoundry’s built-in identity (X.509-based) means identity based controls, policy and telemetry replace dependencies on IPs and NAT. Posture and MFA is built-in, as is support for any OAuth or OIDC IDP.

No inbound access

Software-defined, zero trust native overlays makes IT, OT, IoT or AI unreachable from underlay networks. Close all inbound ports and eliminate all VPNs. 

Authorize before connect

NetFoundry includes identity, continuous authentication and authorization for users, admins, devices, servers, workloads, AI agents and MCPs. Strong auth is required before overlay access.

Mutual TLS (mTLS) is built-in for every overlay segment. End to end encryption (E2EE) with keys sovereign to the endpoints means nobody has access to your data. Choose ciphers, including FIPS 140 compliant and libsodium.

JIT, one-time and persistent access

Just-in-time (JIT), one-time and persistent access models, based on authorized identities. Integrated with workflow and ticketing (JIRA, ServiceNow, Zendesk, etc.), or use NetFoundry APIs for your own custom integration.

End to end zero trust

Extend zero trust beyond the firewall to applications or hosts. NetFoundry enabled servers have no listening ports – unreachable from underlay networks – only available to strongly authorized sessions.

Open source foundation

NetFoundry open sourced its core zero trust software into the OpenZiti project, and continues to maintain the project. It is an open core model – only enterprise, government and OEM functions are separate.

FedRamp & Government Cloud

NetFoundry is deployed in FedRamp and Government Cloud environments, as well as on-premises and air-gapped sites. Includes supporting CJIS, HIPAA, PCI and FIPS 140.

EU CRA

The simplest way to meet EU CRA requirements for connected products. Directly integrate zero trust networking into your product, eliminating VPNs. 

Highlights

  • Enhanced Security
  • Simplified Management
  • Improved Performance
  • Increased Agility
  • Cost Efficiency

Modern Zero Trust Networking

The NetFoundry Fabric provides a comprehensive solution for modern, secure, and high-performance networking, ensuring robust security and seamless connectivity in diverse and dynamic IT, OT, and field environments.
NetFoundry | Executives

Protect What Matters

Easy Zero Trust Implementation

Safeguard your critical assets with ease. Try our products for free, schedule a demo, or contact sales.
Backbone mesh network overlay for secure, scalable communications.
Centralized console for configuring, managing, and monitoring NetFoundry networks.
Automate, secure, and optimize your network management to support DevOps integration.
Endpoint connectivity software for IT, OT, IIoT and cloud.
Secure, software-defined network overlay for enhanced flexibility and control.
Infrastructure, network and software management services provided by NetFoundry experts.
Secure, scalable cloud connectivity platform delivering zero trust architecture for modern applications globally.
Hybrid cloud zero trust solution delivering seamless integration, robust security, and flexible scalability.
On-premise zero trust solution offering complete control, enhanced security, and compliance for critical environments.
Deploy Netfoundry-based solutions in the Cloud, on-premise or in hybrid environments.

Global Connectivity in Minutes

Spin Up Secure Networks on Any Cloud

With NetFoundry Cloud, you can deploy high-performing, resilient global networks across AWS, Azure, and Google Cloud. Get secure, scalable connectivity instantly without worrying about network vulnerabilities.