Rule all of your deployments with a single easy to use interface. Easily access and manage your nodes without having to log-in to the individual systems. This simplicity improves your security posture by reducing complexity and saves your precious time and energy.
In realizing our mission to deliver agile enterprise-grade network security anywhere and anytime, Cloud Central Management is available to enjoy starting with Sensei 1.7 release. With Release 1.8, we'll start rolling out the same capabilities for FreeBSD, Centos, and Ubuntu Operating Systems. Please see our Roadmap for details.
For OPNsense, Cloud Management is an optional feature; and you are free to keep managing your system through the OPNsense Web Interface as usual.
For the upcoming platforms like FreeBSD and Linux distributions, Cloud Central Management will be the de-facto management interface.
You'll be able to apply the same security policies across all or a group of firewalls, be them running on OPNsense, FreeBSD, or Linux.
How does Cloud Central Management help you?
Providing instant access to your reports and policies
You're on the go. A client of yours calls and asks to see if you can have a look at this suspicious connection attempt. You need to access the client's firewall and analyze the reports to dig deeper. Log-in to Central Management and enjoy the same level of analytics that you have with your on-premise user interface.
Simplifying security policy management
You are a Managed Security Provider managing dozens of networks for your clients. Cloud Central Management provides you with the ability to group firewalls under different projects and apply the same security and access policies to all of them in an instant. User, location, device agnostic. You're left with planning and designing your policies carefully, once and for all.
Aggregated Network Security Analytics
You are a security practitioner and you are always on the lookout for anomalies. Trying to keep track of individual systems on a one-by-one basis is an arduous process that is highly likely to cause important alerts to be missed or ignored.
Just like central policy management, Cloud Central Management empowers you with the capability to stream all of your reports to a single project-specific reporting instance. Run your analytics starting from the even bigger picture. Drill down to specific firewalls, and even to individual connections wherever they are.
Improved Security Posture through convenience, simplicity, and agility
These benefits all lead to an improved security posture since you are in control of your networks wherever you are and whenever you want. Simplified Policy and Reports Management allows you to focus your energy and resources on designing, planning, and deploying security policies rather than spending time on unnecessary tasks.
Connecting your firewall to the Cloud Central Management
As of today, Cloud Central Management is only available for the OPNsense firewall.
To connect your firewall, head to Sensei -> Configuration -> Cloud Management Portal and follow on-screen instructions. It just takes a few seconds to get a centralized view of your deployments.
Security & Privacy
SVN makes your privacy and security a top priority. To that end, sessions between your firewall and our Cloud servers are secured with 256 bit AES encryption. We employ 2048 bit RSA keys and Mutual TLS (mTLS) authentication to ensure that traffic is secure and trusted in both directions between the firewall and Sunny Valley Networks Cloud Servers.
Adhering to the "least privilege" principle, Sunny Valley Networks does not employ persistent L2/L3 VPN tunnels for the communications of the Cloud Management Infrastructure. Rather, the architecture is based on industry-standard lightweight TLS sockets and purpose-built for exchanging a limited amount of specific messages.
The privacy-first design prioritizes that we store minimal possible information in the backend servers and that all information is stored in your devices and be retrieved on-demand when you request to access them through the Cloud Interface. Reports are retrieved and displayed through the firewalls.
Cloud agent software is open source. If you need to see what is being exchanged between the Cloud Servers and the firewalls, enable logging, and even more: see the source code for yourself. It’s been coded in the mighty Python programming language! 😉