Introduction
About NexappOS
NexappOS is an SD-WAN gateway and Unified Threat Management (UTM) platform that delivers a complete set of network security and connectivity services. It combines next-generation firewalling, web and DNS protection, application visibility, secure remote access, and centralized orchestration into a single, easy-to-operate system.
NexappOS is designed to be quick to deploy and straightforward to manage, making it suitable for small and medium businesses as well as enterprise and multi-branch environments. Its architecture supports rollout on customer-premises equipment (CPE) with centralized provisioning and lifecycle control through a controller-based management model.
Technology Foundation
NexappOS is built on a hardened Linux networking base for embedded and appliance-class deployments. This foundation provides several practical advantages:
- Flexibility – NexappOS can run on a broad range of x86 or compatible appliance hardware, as well as virtual platforms.
- Customization – Administrators and integrators can tailor features, policies, and network layouts to match site-specific requirements.
- Community ecosystem – The platform benefits from mature open-source networking components and a broad support ecosystem, helping ensure long-term stability and rapid improvements.
Security and Networking Features
NexappOS includes a complete suite of protection and routing capabilities:
- Firewall – Stateful packet inspection, zone-based policies, and granular traffic rules to defend against unauthorized access and unwanted connections.
- DNS Content Filtering – Prevents users from reaching unsafe, malicious, or inappropriate web destinations using reputation feeds and category controls.
- Deep Packet Inspection (DPI) – Identifies applications and protocols independent of ports to enable application-aware policies and visibility.
- Captive Portal (Hotspot) – Provides guest onboarding, authentication, session limits, and usage reporting for Wi-Fi or visitor networks.
- VPN – Enables secure remote access for users and encrypted site-to-site connectivity between locations.
- Remote Controller – Allows centralized registration, monitoring, configuration, and update management for multiple NexappOS devices.
- Privacy Policy Support – Optional Privacy Policy link can be enabled on the portal or home interface to meet compliance requirements.
SD-WAN Core Capabilities
NexappOS provides intelligent SD-WAN routing for multi-link environments, ensuring reliable performance for business applications.
Key capabilities include:
- Multi-Link Internet – Use multiple WAN links in active/active or failover mode.
- Smart Path Selection – Automatically chooses the best WAN based on latency, jitter, loss, and availability.
- Policy-Based Routing – Steer traffic by source, destination, service, or application.
- Application-Aware Steering – DPI identifies apps so routing rules can target applications instead of ports.
- Link Health Monitoring – Continuous probes detect WAN degradation and trigger automatic reroute.
- Template-Driven Deployment via Controller – SD-WAN policies can be created centrally and pushed to many CPE devices for consistent behavior across all sites.
Additional Capabilities
- Quality of Service (QoS) – Prioritizes critical traffic to guarantee performance for business-critical applications.
- IPv6 Support – Full compatibility with IPv6 networks for modern dual-stack deployments.
Get Support
For help and technical guidance, use the official NexappOS support channels and documentation spaces. Bugs, enhancements, and discussions should be reported through the approved community and issue-tracking platforms.