Features

Application Delivery: Reverse Proxy with comprehensive features

SSL offloading to reduce load of the backends
Compression offloading to reduce load of the backends and reduce bandwidth needed to the clients
Session-aware Load Balancing with Failover
Content Caching of popular objects to reduce load of the backends and improve performance
Connection pooling
More...

Full network management (IEEE 802.1Q Layer 2 VLAN, IEEE 802.1AX Bonds, IEEE 802.1D Bridges, etc.). This allows flexible deployment like inline, bridged, routed or other setups.
High-Performance stateful Firewall of the inventor of nf-HiPAC
Layer 4 load balancer for TCP and UDP protocol
IP-Address Spoof-Protection

Protection against most common attacks
Cookie-Encryption preventing Cross-Site Request Forgery/Session Riding, Session Hijacking/Fixation and Cookie Tampering
URL-Encryption preventing Injection/Parameter Tampering and Cross-Site Scripting (XSS)
Generic attack detection of:
- SQL-, HTML-, Command-, Filename-, Header- and EMail-Injection
- Cross-Site Scripting (XSS)
- Protocol-anomalies in HTTP and Response Splitting
Information Leakage-Prevention (more...)
Outbound data theft protection
PCI DSS Compliance
Fine-grained exception-rules for less False-Positives
XML Firewall: protects your XML based Web applications against XML based attacks
Anti Virus: all file uploads can be scanned for viruses and malware
More...

Highest possible re-usability of settings due to continuous objects-groups-model
Additional shell-access (CLI) via serial console or SSH
Distinct administrator-roles
Centralized management of certificates
Alerts and monitoring of services via Email and/or SNMP trap
Transaction-based commit-system for changes
Easy online update
SNMP-Support for external monitoring
Remote Syslog support
Livelogs
Detailed real-time reporting