SORACOM Launches VPG Traffic Filtering for IoT Security
The feature gives IoT operators a platform-native way to restrict device communication to trusted destinations, addressing a common security gap in connected devices.
Reporting from 1 source: ASCII.jp.
Soracom announced a new firewall service for its IoT platform, VPG Traffic Filtering, on July 7. The service uses an allowlist to permit only trusted communication destinations by IP address, port, protocol, or domain name. It supports IP filtering and FQDN filtering with wildcards, and can be managed via the Soracom console or API. The company targets high-security sectors such as manufacturing, finance, and security.
Soracom's VPG Traffic Filtering operates as a firewall on the platform itself, not on the device. It uses an allowlist model: only traffic to explicitly permitted IPs, ports, protocols, or domain names is allowed. This limits the blast radius if a device is compromised. The service supports two filtering modes: IP filtering by address, protocol, and port, and FQDN filtering by domain name with wildcard support. Settings can be changed programmatically via the Soracom API, enabling automated policy updates. Soracom cites use cases including sensor data transmission to specific clouds, regional data restrictions, enforcing HTTPS-only communication, and separate controls for development and production environments. The company positions the feature for industries with high security requirements like manufacturing, finance, and security.
Synthesized by Yomimono from the 1 cited source below, including Japanese-language reporting where cited, then editorially reviewed before publishing.