EnforceGate vX Documentation¶

Welcome to the EnforceGate vX product documentation. For the product website — features, pricing, customer stories, and the path to a trial — visit www.enforcegate.com.

Overview¶

Exosys EnforceGate vX is a self-hosted secure web gateway that delivers high-performance URL filtering, Network Access Control (NAC), SSL/TLS inspection and threat mitigation. It is part of the cybersecurity product line developed by Exosys.

The vX suffix expands to virtual eXtensible — EnforceGate vX is the virtual edition of the product line. A hardware-based edition of EnforceGate is available exclusively through our partner channel.

The vX edition ships as hardened Docker container images and as a turnkey virtual appliance for VMware, KVM and Hyper-V. Both deployment shapes bundle the policy engine, the Squid-based proxy and cache (with optional SSL/TLS inspection), the captive portal, a TLS terminator, and an optional toolbox sidecar for scripted category-list refresh and operator automation into an easy-to-manage compose stack. The images are reproducible, supply-chain-signed with cosign, and can be deployed on commodity hardware in minutes.

Addressed challenges¶

In modern computing environments, HTTP and HTTPS account for the vast majority of network traffic. Without visibility and control over this traffic, infrastructure and endpoints remain exposed to threats such as phishing, data exfiltration, malware, and covert command-and-control (C2) communications.

With EnforceGate you can centrally enforce and audit web traffic so that only necessary resources are accessed, significantly reducing your security exposure. The shipped baseline permits every request that no policy explicitly denies — a single drop-in rule flips this to default-deny for environments where strict whitelisting is preferred. The captive portal absorbs every block, warn or aup verdict and renders an explanation page in the visitor's language.