Secure Networking for
Manufacturing Systems

Easily connect and micro-segment Industrial Control Systems (ICS) and SCADA networks across one or many production plants - at lower cost than any alternatives

We deliver a simpler approach to securing and isolating your critical infrastructure based on trusted machine identities. Eliminate the need for internal firewalls and VPNs for secure access and segmentation with a single solution that is fast to deploy and radically secure.

50% Lower CapEx and 
OpEx through MFG 
network simplification


Connect and Revoke Devices 
97% Faster, with little to
no network changes.


90% Reduced Attack
Surface through cloaking,
and micro-segmentation

Segmentation alternatives for manufacturing 
systems are complex and costly


Connecting modern and legacy manufacturing systems, from factory machine controls to your supply chain, is crucial to maximize operational efficiency of your plants and overall operations. However, securely connecting and segmenting existing plants, employees and vendors, as well as cloud, Internet of Things (IoT), robotics, and 3D printing is significantly complex and costly.

The most pressing challenges manufacturing IT 
leaders struggle with include:

Micro-segmenting machines across flat L2 or routed L3 networks and isolating them from the corporate network

Providing secure and segmented access for employees and vendors

Lack of security for vulnerable legacy equipment (Windows XP and more)

Traditional IT solutions are not the answer. Technologies such as firewalls, VPNs, ACLs, and VLANs were not designed for energy environments. They require significant time and expertise to deploy and manage, yet still remain vulnerable to breach due to insufficient security and segmentation.

We have a better solution that solves these challenges.

Simple, secure, and segmented
manufacturing networks


We deliver peer-to-peer encrypted networks that make it simple to connect and micro-segment plant operation systems across separate locations and networks.

With a simple plug-and-play deployment model, you can now eliminate the many complex and time-consuming steps required to deploy and manage firewalls and VPNs – without having to re-IP machines. Reduce costs, increase security, and improve network up-time with granular segmentation and centralized network control.

Strong Security

Easily isolate manufacturing systems off the corporate network

Better Data Collection

Secure cloud integration delivers improved business intelligence and predictive maintenance


VPN-Less Vendor Access

Segmented remote access that meets regulatory compliance requirements

Simple and fast deployment


Most customers will deploy hardware such as the Airwall 500 in order to cloak and segment manufacturing systems. Some are even moving towards granular segmentation of systems within the plant using the smaller, more cost-effective Airwall 75.

The Airwall relay is the world’s first identity-based router that connects systems and buildings across separate networks, and can be deployed on-premises or in the cloud.The Airwall Conductor is the orchestration engine that manages policy for all distributed Airwall services (Airwall appliances, Airwall servers, and Airwall clients), delivering simple control of the network.

A Simplified Network Diagram
A Simplified Network Diagram

The Airwall Conductor delivers simple and 
centralized network control 

Eliminate the complex and manual configurations associated with traditional IT solutions through simple point-and-click policy orchestration. Create, deploy, and disconnect overlay networks in seconds, with little to no change to existing network infrastructure.

Setting Policy Image
Setting Policy

Policy orchestration that’s point-and-click simple

Easily create isolated network segments and configure policy using the radio buttons. This simple process replaces the multiple steps of security and network configurations (using network addresses, ports, certificates, ACLs, and VLANs, and more) typically required by IT staff.

Visualizing Policy

Verify overlay network configuration and compliance quickly and easily

The Visual Trust Map allows you to immediately validate communication policy between protected machines, as well as their Airwall Services. With greater control of your network, showing segmentation for regulatory compliance reporting and security audits becomes quick and easy.

Visualizing Policy Image
Education Guide

5 Common Micro-Segmentation
Mistakes Guide

Start your
micro-segmentation project on the right foot

Customer Use Case

Smart Buildings

Learn how Penn State
University securely connected and isolated 640 buildings

Customer Use Case

IIoT Microsegmentation
at Sea

Learn how one of the world’s largest cruise lines connected and secured its entire fleet’s maritime systems