Romana is a cloud-native networking solution that automates the creation of isolated networks and implements distributed firewall capabilities for containerized and virtualized environments. The platform provides topology-aware IP Address Management (IPAM) that assigns natively routable IP addresses to endpoints without requiring network overlays or tunnels. This approach eliminates the performance overhead typically associated with overlay networking while simplifying network operations. The distributed firewall component applies access control policies consistently across all endpoints, including pods and virtual machines, regardless of their location within the infrastructure. Security policies are enforced at the endpoint level, providing granular control over network traffic. Romana's topology-aware address assignment enables highly aggregated routing within the network, which reduces the computational load on networking hardware and supports more secure network configurations. The system integrates with both Kubernetes and OpenStack orchestration platforms. The solution supports deployment across on-premises infrastructure and Amazon Web Services (AWS) environments, providing flexibility for hybrid and multi-cloud architectures.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
Snort is an open source intrusion prevention system that uses rules to detect and prevent malicious network activity.
A userland implementation of the Network Block Device protocol that enables remote block device access over network connections for distributed storage and virtualization use cases.
WiGLE.net is a platform that collects and provides data on WiFi networks and cell towers, with over 1.3 billion networks collected.
Tor Browser is a free and open-source software that allows users to browse the internet anonymously and privately.
A blog sharing packet capture files and malware samples for training and analysis, with archived posts and traffic analysis exercises.
A website scanner that provides a sandbox for the web, allowing users to scan URLs and websites for potential threats and vulnerabilities.
A free DNS recursive service that blocks malicious host names and protects user privacy.
Tcpdump is a command-line packet analyzer for capturing and analyzing network traffic.
NBD (Network Block Device) is a network protocol implementation that allows clients to access remote block devices over a network as if they were local storage.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.