discrimiNAT

Filter egress traffic in the Cloud

By hostnames, not IP addresses
No proxy config needed
Self service, 5 minute deployment
Cloud native config and logging
TLS 1.2 or better enforced
SSH/SFTP target support

Watch Demo

Augments native Security Groups

Enhances native Firewall Rules

Extends native Security Groups

Upgrades native Firewall Rules

Overheard at Concierge

“Again, thanks for the help and for the product. I’ve deployed the solution in multiple environments already and it is working fine.”

Cloud Architect · Retail · on GCP May 2021

“Thank you for your continuous help and support, it is greatly appreciated. The provided example was especially useful.”

SRE · Core Banking · on AWS Apr 2021

“Impressed with discrimiNAT — fast, simple and minimal config required. Better than ******** for our use case.”

Head of Digital · Credit Ratings · on AWS May 2020

Recent Blog Posts

Proxy on GCP — Harder, Better, Faster, Stronger 🤖

A minimal allowlisting Squid config vs. a proxy-less solution on Google Cloud Platform, and the week before the pentest

entropy.ubuntu.com giveth, and taketh away

A closer look at what data is sent to entropy.ubuntu.com on Cloud instance boot

Windows Server 2019 Phoning Home on an SSLv3 Line

Observation of traffic from a Windows Server 2019 instance with a firewall restricting its egress, and a CloudWatch exercise in filtering and aggregation.

Where We Are

Level39, 1 Canada Sq., Canary Wharf, London, E14 5AB
Follow on LinkedIn
Follow on Twitter