Features
WorkmanOS is a Linux-based operating system designed to seamlessly integrate IT and OT environments. With advanced security features and flexible capabilities, WorkmanOS ensures secure and efficient management of digital infrastructures across industries. Explore all the features that make WorkmanOS the trusted choice for secure, optimised operations.
Networking
| WorkmanOS UTM | WorkmanOS 4i | ||
| Network zone isolation and policy support | Yes | Yes | |
| Support for to 32 internal network zones | Yes | Yes | |
| Multiple WAN | Yes | Yes | |
| Quality of service and bandwidth management | Yes | Yes | |
| Advanced TCP window scaling | Yes | Yes | |
| Support for untagged VLAN traffic | Yes | Yes | |
| Bonding mode configuration (UI) | Yes | Yes | |
| NTP (Network Time Protocol) | Yes | Yes | |
| DHCP server | Yes | Yes | |
| DHCP relay support | Yes | Yes | |
| SNMP server | Yes | Yes | |
| Dynamic DNS (DDNS) | Yes | Yes | |
| NAT (Network Address Translation) | WorkmanOS UTM | WorkmanOS 4i | |
| Static NAT | Yes | Yes | |
| Dynamic NAT | Yes | Yes | |
| PAT (Port Address Translation) | Yes | Yes | |
| IP Masquerading | Yes | Yes | |
| Full Cone NAT | Yes | Yes | |
| IPsec NAT traversal | Yes | Yes | |
| Routing | WorkmanOS UTM | WorkmanOS 4i | |
| Static routes | Yes | Yes | |
| Source-based routing | Yes | Yes | |
| Destination-based routing | Yes | Yes | |
| Policy-based routing | Yes | Yes | |
| Bridging | WorkmanOS UTM | WorkmanOS 4i | |
| Unlimited interfaces per bridge | Yes | Yes | |
| Transparent bridge mode | Yes | Yes | |
| OSI layer 2 firewall functionality | Yes | Yes | |
| Spanning tree | Yes | Yes | |
| Wireless | WorkmanOS UTM | WorkmanOS 4i | |
| Multiple SSID supported (Max 4) | – | Yes | |
| Bridge SSID to any internal network zone | – | Yes | |
| Wireless security (WPA2 Personal / Enterprise) | – | Yes | |
| Channel width selection | – | Yes | |
| Hidden SSID support | – | Yes | |
Network Security
| Intrusion Detection & Prevention | WorkmanOS UTM | WorkmanOS 4i | |
| IDS Mode offers high performance threat detection | Yes | Yes | |
| Create security policies using threat categories | Yes | Yes | |
| Large signature database (over 20k signatures) | Yes | Yes | |
| Support for uploading custom signatures | Yes | Yes | |
| Application & DNS Security | WorkmanOS UTM | WorkmanOS 4i | |
| Deep packet application inspection and identification | Yes | Yes | |
| DNS proxy filters network traffic for malware | Yes | Yes | |
| DNS proxy and routing ensures DNS security | Yes | Yes | |
| DNS-based phishing protection | Yes | Yes | |
| Firewall | WorkmanOS UTM | WorkmanOS 4i | |
| Geo-IP firewall filtering (block/allow traffic by country) | Yes | Yes | |
| Time-based firewall rules (day of week / time of day) | Yes | Yes | |
| Support for VoIP/SIP | Yes | Yes | |
| DoS & SYN/ICMP flood protection | Yes | Yes | |
| Firewall Objects (IP & FQDN) | Yes | Yes | |
Web Security
| HTTP/HTTPS Proxy | WorkmanOS UTM | WorkmanOS 4i | |
| Multiple proxy modes: transparent, non-transparent and transparent bridge | Yes | – | |
| HTTPS proxy modes: decryption or URL-based | Yes | – | |
| Support for proxy whitelists and blacklists | Yes | – | |
| Cache management capabilties | Yes | – | |
| Support for upstream proxy server | Yes | – | |
| Security Features | WorkmanOS UTM | WorkmanOS 4i | |
| HTTP, HTTPS, FTP URL and antivirus filtering | Yes | – | |
| Easily block inappropriate, time-wasting or malware sites using filtering categories | Yes | – | |
| Build complex access policies based on time, mime-type, useragent and more | Yes | – | |
| Bitdefender URL filtering engine | Yes | – | |
| Bitdefender anti-malware engine | Yes | – | |
| SafeSearch enforcement | Yes | – | |
| User Management & Authentication | WorkmanOS UTM | WorkmanOS 4i | |
| Authentication methods include: Local, RADIUS, LDAP, Active Directory | Yes | – | |
| Support for NTLM single sign-on | Yes | – | |
| Group-based and user-based web access policies and filtering | Yes | – | |
Mail Security
| SMTP/POP3 Proxy | WorkmanOS UTM | WorkmanOS 4i | |
| Support for transparent and non-transparent proxy | Yes | – | |
| Bi-directional SMTP filtering (inbound and outbound) | Yes | – | |
| Block files by filetype (extensions) | Yes | – | |
| Advanced inbound/outbound mail routing | Yes | – | |
| Support for Delivery Status Notification (DSN) | Yes | – | |
| Support for smart host delivery (mail relays) | Yes | – | |
| Security Features | WorkmanOS UTM | WorkmanOS 4i | |
| Anti-spam with bayes, pattern and SPF | Yes | – | |
| Dual spam detection engines (with auto learning) | Yes | – | |
| Anti-virus email filtering and quarantine | Yes | – | |
| Support for multiple RBLs (real-time blacklists) | Yes | – | |
| Support for greylisting | Yes | – | |
| Bitdefender Anti-spam Engine | Yes | – | |
| Bitdefender Anti-malware Engine | Yes | – | |
| Email Quarantine Management | WorkmanOS UTM | WorkmanOS 4i | |
| Web-based quarantine monitoring and management | Yes | – | |
| SPAM quarantine notification options | Yes | – | |
Virtual Private Networking
| IPsec | WorkmanOS UTM | WorkmanOS 4i | |
| VPN Site-to-Site: Pre-Shared Key and X.509 certificate | Yes | Yes | |
| VPN Remote Access (Roadwarrior): L2TP, XAuth, or Raw IPsec | Yes | Yes | |
| Remote access platform support: iPhone/iPad (iOS), Android, Mac OS X, Windows | Yes | Yes | |
| Support for modern encryption algorithms | Yes | Yes | |
| Support for modern hashing algorithms | Yes | Yes | |
| Support for Diffie Hellman (DH) mode selection | Yes | Yes | |
| Support for IKEv1, IKEv2 | Yes | Yes | |
| Dead Peer Detection (DPD) | Yes | Yes | |
| NAT traversal | Yes | Yes | |
| Perfect Forward Secrecy (PFS) | Yes | Yes | |
| Compression | Yes | Yes | |
| OpenVPN | WorkmanOS UTM | WorkmanOS 4i | |
| VPN Site-to-Site: Pre-Shared Key, X.509 certificate or both | Yes | Yes | |
| VPN Remote Access (Roadwarrior) | Yes | Yes | |
| Endian SSL VPN client: Mac OS X, Windows | Yes | Yes | |
| Support for mobile SSL VPN: iPhone/iPad (iOS), Android | Yes | Yes | |
| Support for multiple SSL VPN server instances | Yes | Yes | |
| Support for VPN over HTTP Proxy | Yes | Yes | |
| Support for bridged or routed server configuration | Yes | Yes | |
| Support for VPN failover | Yes | Yes | |
| Push DNS, network routes and domain suffix information to clients | Yes | Yes | |
| Control client-to-client communication | Yes | Yes | |
| VPN Portal (Reverse Proxy) | WorkmanOS UTM | WorkmanOS 4i | |
| Provision secure access to internal HTTP/HTTPS resources | Yes | Yes | |
| Configurable portal page | Yes | Yes | |
| Support for multiple destinations | Yes | Yes | |
| Destination-based authentication | Yes | Yes | |
| SSL offloading | Yes | Yes | |
| User Management & Authentication | WorkmanOS UTM | WorkmanOS 4i | |
| Authentication methods include: Local, RADIUS, LDAP, Active Directory | Yes | Yes | |
| Unified user/group management for OpenVPN, L2TP, XAUTH, VPN Portal | Yes | Yes | |
| Integrated support for one-time password (OTP) | Yes | Yes | |
| Integrated certificate authority | Yes | Yes | |
| External certificate authority support | Yes | Yes | |
| User password and certificate management | Yes | Yes | |
| Support for Let’s Encrypt and ZeroSSL certificates | Yes | Yes | |
| Support for ACME protocol (Automated Certificate Management Environment) for automated certificate provisioning and renewal | Yes | Yes | |
Edge Computing
| WorkmanOS UTM | WorkmanOS 4i | |
| Docker Engine and CLI included | Yes | Yes |
| Enables hybrid/remote applications or micro-services | Yes | Yes |
| Requires much less hardware and software resources than full-machine virtualization | Yes | Yes |
| Reduce network latency and provide offline access to remote applications | Yes | Yes |
| Increased application portability and faster software development and delivery | Yes | Yes |
*Not available for use with the WORKMAN 4i Edge V
Workman delivers premium, high-precision machinery and engineering solutions for industries that demand reliability and performance.
Pages
info@workmanhk.com
Address
FLAT/RM 203 2/F UPPER OFFICES HANKOW CENTRE 5-15 HANKOW ROAD TSIM SHA TSUI, KL