You are here: Home / SERVICES / IT SERVICES & COMPANY NETWORKS / Firewall & Gateway / Memory Only Linux (MOX)

Memory Only Linux (MOX)

Our gateway MOX is the ideal solution for your firewall as it is scalable and provides secure connection over the internet and using VPN. It is already available in fourth-generation and supports complex applications in companies.
Memory Only Linux (MOX)

MOX (Memory Only Linux)

The MOX gateway is characterized through the easy adaptability. It is ideal for the use for the configuration of special features. The following three points characterize the MOX system mainly:


  • read-only: MOX reacts completely unaffected in case of disturbance or eventual blackouts, changes are only saved at someones disposition
  • easily customizable: gateway solutions that are configurable through using a GUI are quickly overextended when special requirements have to be configured. MOX does not use a graphical interface and offers high flexibility in the configuration of functionalities. Special requirements and solutions can be easily implemented using the MOX.
  • stable system: updates of the MOX do not include changes of the functionalities. The configuration is preserved and thereby updates do not cause problems.


The 4th generation for the future

Memory only Linux 4 (MOX4) bases on Ubuntu 14.04. Depending on the used hardware, MOX4 has three ethernet interfaces, one slot for a SIM card and two mini PCI-express pins. Therefore, MOX4 provides high resilience concerning the internet connection. Additionally, MOX can be run without any external modem.

MOX4 is completely pre-configured and available including the hardware. Additional configurations, add-ons and updates are realized remote. This allows the installation of the latest development when the system is running.


First things first

The used flash memory is read-only configured. No hard disk is necessary. The mechanical robustness is one of the main advantages of a flash memory. Further advantages are the minimum access time and the silence in operation. Changes of the configuration have to be saved explicitly. This avoids problems with inconsistent file systems and faulty configurations.

The strict separation of system and configuration files guarantees easy backup and allows operations to be safeguarded or resumed in disaster cases in very simple ways.

MOX4 is compatible to former MOX generations.


MOX provides the following functionalities:

  • MOX 4 offenFirewall: by default active for
    -   the communication over the VPN connection of the customer
    -   the communication over standard ports of the internal net into the internet
    -   the communication from and to IP address ranches of the company
  • connection over VPN
    -   connections for branch offices and outdoor staff
    -   connection to the VPN of the customers
    -   remote access
  • read-only system on a flash memory that provides high stability, changes are only saved on a command
  • updates during operation possible
  • data connection using an external modem or a SIM card
  • test of upload and download rate of the used internet connection
  • monitoring through nagios
  • backup of the configurations and simple restore (also on changed hardware)

Hardware Requirements

MOX can be used on different hardware platforms, e.g. on embedded systems like ALIX, APU or Brik

The hardware requirements are as follows:

  • CPU that is Intel compatible (32 or 64 bit)
  • at least 2GB RAM
  • 3 x ethernet 10/100/1000Mbit RJ45
  • 1 x serial port or VGA
  • small SSD or CF card


Dual MOX: Two MOX are redundantly connected to guarantee high reliability during running operations.

Mobile MOX: The MOX can be used with an mobile HSDPA modem. Thereby, mobile VPN gateways can be implemented. Operation areas are e.g. peripheral controlling and mechanical equipment as well as mobile infrastructures (train, car, container, airplane etc.).

'VPN tunnel in a tunnel': This method allows the integration of extern development environments in local systems. Therby, e.g. the programming of Siemens SPS unit in STEP 7 is possible through VPN.