./security/defguard, True Zero-Trust WireGuard VPN with 2FA/MFA

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: CURRENT, Version: 1.5.1nb1, Package name: defguard-1.5.1nb1, Maintainer: adam

Defguard provides Comprehensive Access Control (a complete security platform):
* WireGuard VPN with 2FA/MFA - not 2FA to "access application" like most
solutions
- The only solution with automatic and real-time synchronization for users'
desktop client settings (including all VPNs/locations).
- Control users ability to manage devices and VPN options
* ACLs/Firewall Management for Linux and FreeBSD/OPNSense
* Integrated SSO based on OpenID Connect:
- significant cost saving, simplifying deployment and maintenance
- enabling features unavailable to VPN platforms relying upon 3rd party SSO
integration
* Already using Google/Microsoft or other OpenID Provider? - external OpenID
provider support
* Two way Active Directory/LDAP synchronization
* Only solution with secure remote user Enrollment & Onboarding
* Yubico YubiKey Hardware security key management and provisioning
* Secure and robust architecture, featuring components and micro-services
seamlessly deployable in diverse network setups (eg. utilizing network
segments like Demilitarized Zones, Intranet with no external access, etc),
ensuring a secure environment.
* Enterprise ready (multiple Locations/Gateways/Kubernetes deployment, etc..)
* Built on WireGuard protocol which is faster than IPSec, and significantly
faster than OpenVPN
* Built with Rust for speed and security

Master sites:

Filesize: 3535.806 KB

Version history: (Expand)

CVS history: (Expand)


   2025-10-23 22:40:24 by Thomas Klausner | Files touched by this commit (2999) 
Log message:
*: recursive bump for pcre2

Running an old binary against the new pcre doesn't work:
/usr/pkg/lib/libpcre2-8.so.0: version PCRE2_10.47 required by \ 
/usr/pkg/lib/libglib-2.0.so.0 not defined
   2025-10-21 20:31:28 by Adam Ciarcinski | Files touched by this commit (11) | Package updated
Log message:
defguard*: updated to 1.5.1

1.5.1
This patch for version 1.5 includes fixes for vulnerabilities identified during \ 
our latest penetration test. As a fully transparent organization, Defguard \ 
publishes a Pentesting Security Report page where you can track the status of \ 
our vulnerability fixes.

1.5.0
This is the biggest, most feature packed (and fixes) release we have ever done!
We’ve introduced 11 major features! and nearly 100 bugfixes.
   2025-07-14 07:35:36 by Adam Ciarcinski | Files touched by this commit (6) 
Log message:
defguard: added version 1.4.0

Defguard provides Comprehensive Access Control (a complete security platform):
* WireGuard VPN with 2FA/MFA - not 2FA to "access application" like most
  solutions
  - The only solution with automatic and real-time synchronization for users'
    desktop client settings (including all VPNs/locations).
  - Control users ability to manage devices and VPN options
* ACLs/Firewall Management for Linux and FreeBSD/OPNSense
* Integrated SSO based on OpenID Connect:
  - significant cost saving, simplifying deployment and maintenance
  - enabling features unavailable to VPN platforms relying upon 3rd party SSO
    integration
* Already using Google/Microsoft or other OpenID Provider? - external OpenID
  provider support
* Two way Active Directory/LDAP synchronization
* Only solution with secure remote user Enrollment & Onboarding
* Yubico YubiKey Hardware security key management and provisioning
* Secure and robust architecture, featuring components and micro-services
  seamlessly deployable in diverse network setups (eg. utilizing network
  segments like Demilitarized Zones, Intranet with no external access, etc),
  ensuring a secure environment.
* Enterprise ready (multiple Locations/Gateways/Kubernetes deployment, etc..)
* Built on WireGuard protocol which is faster than IPSec, and significantly
  faster than OpenVPN
* Built with Rust for speed and security