Built for data, not the web or applications, MinIO's Firewall is S3-aware, lightweight and built for scale. The result is a firewall that makes sense to those responsible for large scale data infrastructure.
Traditional firewalls can be grouped into IP-based firewalls and application firewalls. While they do their jobs well, neither are designed for data. We are in the business of data, and of protecting that data. So we built a firewall for the era of the object store.
The MinIO AIStor Firewall has the capability to throttle requests based on bandwidth and requests rate, load balancing traffic across MinIO servers. It offers support for TLS right out of the box using industry standard solutions like Let's Encrypt. In addition, it allows you to monitor Liveness port for high availability, Health Check for load balancing, and support for S3, Console and SFTP endpoints.
The MinIO AIStor Firewall supports flexible rule making. This allows the operator to throttle bandwidth by Rx/Tx or on the request rate on an individual bucket or prefix. This ensures the access rate to the bucket can be controlled ensuring QoS.
MinIO supports termination of external TLS directly to the AIStor Firewall. It can be set up with Auto-TLS which uses Let's Encrypt in the backend to create new certificates for TLS authentication.
The MinIO AIStor Firewall allows you to balance incoming traffic into MinIO clusters across the individual MinIO nodes to ensure traffic is distributed evenly.
Liveness port monitoring ensures high availability for critical APIs like S3 or Console. If one of the backends is offline the traffic is automatically rerouted to the other nodes in the cluster.
Health check for the MinIO AIStor Firewall monitors for any slowness and degradation of the pools in the cluster.
The MinIO AIStor Firewall supports S3, SFTP and Console endpoints.
Chat directly with our engineering team about your Firewall Questions
Complete this form and the team will reach out to get you an evaluation license.