NetActuate and NETINT Deliver Global VPU-Accelerated Infrastructure

Explore
Glowing points connected by lines on a blue wireframe globe symbolizing a digital network.

Firewall

Firewall
Stateful Layer 3 firewall protection for your NetActuate edge infrastructure. Define complex rule sets, assign them to individual VMs or entire deployments, and enforce consistent security policy across your environment through the portal or API.
Talk to Our Team
Request a Quote
Explore Networking Options:
Networking Overview
BGP Anycast
Cloud Routers
Magic Mesh
IP Transit
IX Peering
DDoS Mitigation
Firewall
Load Balancing

Manage Your Networking

The NetActuate customer portal allows full visibility and management of your network configurations.

Play Overview Video

Control Domains
Manage DNS configurations and zones
BGP & DDoS
Manage BGP groups/sessions and DDoS settings/events
Monitor Usage
View VM packets and Anycast traffic

Firewall Documentation

Welcome
How-To-Guide
Other Resources
Get Support

Play

How It Works

The NetActuate Firewall is a fully stateful Layer 3 firewall service for edge virtual machines. Unlike simple ACLs, a stateful firewall tracks the state of active connections — allowing legitimate return traffic while blocking unsolicited inbound packets. You define named firewall sets (groups of rules), then assign those sets to one or more VMs.

Rules can be enforced automatically at VM deployment, ensuring new servers are always protected from the moment they come online.

Why NetActuate Firewall

Stateful Packet Inspection

Track active connection state for TCP, UDP, and ICMP traffic. Legitimate return traffic is automatically allowed; unsolicited packets are dropped.

Named Firewall Sets

Create reusable rule sets and assign them to any number of VMs. Update a set once and changes propagate across all attached instances.

Inbound & Outbound Rules

Define rules for both directions of traffic with full control over source/destination IPs, port ranges, and protocols.

Default-Deny Posture

Firewall sets can default to deny-all, with only explicitly permitted traffic allowed a security best practice for exposed infrastructure.

VPC Firewall Integration

Firewall rules are also available natively within VPCs, allowing policy enforcement at the network gateway level for all VPC resources.

Auto-Assign on Deployment

Configure your account to automatically apply a firewall set to every new VM at deployment enforcing security policy without manual steps.

Portal & API Management

Build, update, and assign firewall sets from the NetActuate portal or via API for integration with infrastructure-as-code workflows.

Common Use Cases

Port Restriction

Restricting inbound access to only required ports (e.g., 22/SSH, 443/HTTPS) on public-facing VMs

Consistent Security

Enforcing consistent security baseline across an entire fleet of edge VMs with a shared firewall set

Isolation

Blocking outbound traffic to unauthorized destinations and isolating development, staging, and production with separate rule sets

Security Frameworks

Complying with security frameworks (SOC 2, PCI DSS, etc.) that require documented network access controls

Pricing

Firewall is included with VM deployments.

tick
There are no additional charges for rule sets.
Request a Quote

Frequently Asked Questions

What is NetActuate Firewall?

The NetActuate VM Interface Firewall lets you create rule sets that control traffic to your virtual machine network interfaces. Create named firewall sets, define IPv4 and IPv6 rules with accept/drop actions, and apply them across your fleet of servers from the portal or API.

Is the firewall enabled by default on new VMs?

Not by default - but you can configure your account to auto-assign a firewall set to every new VM at deployment. This is the recommended approach for teams that require all infrastructure to be protected from launch.

How are firewall rules structured?

Rules are organized into named firewall sets. Each set contains ordered allow/deny rules with source IP, destination IP, port, and protocol criteria. Sets are assigned to one or more VMs and take effect immediately upon assignment.

Does the firewall protect VMs inside a VPC?

VPC resources have firewall protection available at the VPC gateway level, in addition to the per-VM firewall. Both can be used together for defense-in-depth.

What happens if I accidentally lock myself out?

If a firewall rule blocks your own access, you can modify or remove the rule from the portal without needing a network connection to the affected VM. Our support team can also assist with firewall troubleshooting if needed.

Can firewall sets be managed with the API?

Yes. The full firewall API allows you to create, update, and assign firewall sets programmatically compatible with Terraform, Ansible, and other infrastructure-as-code tools.

Book an Exploratory Call With Our Experts

Reach out to learn how our global platform can power your next deployment. Fast, secure, and built for scale.

Get Started
Cloud
Public CloudPrivate CloudVirtual MachinesManaged K8sVPCHybrid Cloud
Acceleration & AI
Anycast InferenceGPU as a ServiceCoherently AIHigh Powered ColoSynamedia Multi-CDN
Edge Infrastructure
Bare MetalColocation
Storage
Block StorageObject StorageCustom Storage
Networking
BGP AnycastIP TransitIX PeeringLoad BalancingDDoS Mitigation

Anycast.com

A Resource Hub for BGP Anycast & Network Technologies

Explore
Solutions
Disaster RecoveryCloud RepatriationDNS ServicesCDNOverlay NetworksSecurity ProvidersC-Band Transition
Regions
North AmericaSouth AmericaEuropeAsia & OceaniaMiddle East & Africa
Resources
Case StudiesBlogTechnical AssetsNewsLooking GlassRegions MapRegions List
Company
About UsPartnersSupportOpen SourceComplianceFAQsCareersContact
pci dss badge
xlinkedinyoutube-icgit-ic
© 2026 NetActuate. All rights reserved.
PoliciesManage Cookies