The Networking Software for Zero Trust Security
DxOdyssey is lightweight software that enables you to create highly available application-level micro-tunnels across any mix of locations and platforms. And it does so more easily, more securely, and more discreetly than any other solution on the market. Using DxOdyssey puts you on a path to zero trust security and helps networking and security admins secure multi-site & multi-cloud operations.
Flexible Software for Protecting the New Perimeter
The network perimeter has evolved. And DxOdyssey is designed with this in mind. Old VPN and direct link approaches are cumbersome to maintain and open up the entire network to lateral movement. DxOdyssey takes a more secure approach, giving users app-level access rather than network-level access, reducing attack surface. And it does all of this with the most secure and performant approach to create a Software Defined Perimeter (SDP) to grant connectivity to distributed apps and clients running across multiple sites, clouds, and domains.
Easy Installation and Configuration
Installing and configuring DxOdyssey is incredibly easy. Just install, configure, and connect. In just seconds, this flexible, lightweight gateway software can be installed on any Windows or Linux machine that you wish to use as a gateway for the tunnels. DxOdyssey gateways do not require DNS resolution during configuration. Once you’ve joined the gateways together, they communicate and transfer data directly with one another. Watch this video to see how to install DxOdyssey and create a gateway group. You can then set up as many app-specific micro-tunnels as you wish. Local clients can connect securely to the remote service by connecting to the local gateway port. Check out this short video to see how easy it is to set up and manage DxOdyssey micro-tunnels. Remote users outside of the local network can install DxConnect, a lightweight agent, on their devices to connect to the tunnels they have been granted access to, and can do so from anywhere.
DxOdyssey can be fully deployed and configured using the management UI, API, and via automated scripts. Check out this demo video for an example of how to configure DxOdyssey with automated scripts.
Origins and targets can be any machine, anywhere, even across multiple clouds behind NAT routers. With DxOdyssey, there are no complex appliances to configure and no firewall rules or ACLs to maintain. And there are no extra fees you need to pay to your cloud vendors to build your own secure connections to your cloud servers.
Building highly performant micro-tunnels quickly, easily, and with the lowest cost is one thing. But doing it with the utmost security is quite another. When building this SDP solution from the ground up, we looked at all of the issues that plague networking solutions and avoided all of those traps. Here’s what DxOdyssey does to improve the security of your systems:
- No “controller” node in the middle. DxOdyssey gateways and remote clients register with a “matchmaking service” in order to locate each other. But after that, gateways communicate with each other directly: there is no “middleman” in the data path whatsoever, and the connectivity between the machines does not depend on the availability of the matchmaking service.
- Protocol for communication is both secure and performant. DxOdyssey implements reliable, stream-oriented tunnels over UDP. It makes use of a number of techniques similar to TCP, including retransmission, selective acknowledgments, and congestion control. Its use of UDP eliminates certain types of latency and makes connectivity more reliable.
- Servers and users are “invisible” to the outside world. DxOdyssey tunnels utilize random UDP ports that are outbound initiated, making them invisible to port scanners and other hacking tools since no inbound ports are opened on the firewall.
Highly Available Micro-Tunnels for Uninterrupted Access
The last thing you want is for your tunnels to become a single point of failure. That’s why DxOdyssey supports the configuration of a highly available tunnel group. Should a tunnel origin or destination become unavailable for any reason, it can fail over to another gateway in the group—ensuring uninterrupted application connectivity. DxOdyssey gateways are not DNS dependent, and just use a virtual host name, or “Vhost,” and virtual IP address for failover. Additionally, load balancing for clients can be achieved by assigning them to a specific Vhost.
3rd Party Integrations
DxOdyssey and its client software, DxConnect, have open APIs that can run on any Windows or Linux machine. This allows partners to integrate our software into their applications. One use case is enabling a secure interconnection to be built into a DevOps toolchain. You can use our samples of unattended scripts and procedures as guides to integrate DxO and DxC into your own app solutions. This extensibility also makes it simple to take our tunneling technology and tie it in to another MFA, SIEM, EMM, or SSO solution.
Manage SQL Server Availability Groups Across Sites & Clouds
Using our DxOdyssey integration for SQL Server Availability Groups, you can create a multi-server / multi-site / multi-cloud AG without exposing any open ports or requiring the use of a VPN. And not just that, but the integration does fault detection and initiates automated failover for fully resilient, highly available, distributed AGs across Windows and Linux servers and multiple sites. Watch this video to see how the AG integration works