Set the network policy. Allowlist every destination. Block exfiltration. Inspect all traffic.
Firewalls
Code with unrestricted network access is a liability, and integrations often run code you didn't write. Metorial's virtual firewalls put a network policy in front of every integration and MCP server, controlling inbound and outbound traffic so each workload reaches only approved destinations, malicious traffic is blocked, and everything on the wire is recorded.
Per-workload firewall rules control which hosts and endpoints an integration can send to and receive from. Traffic is allowlisted rather than open by default.
Egress filtering stops compromised or malicious code from reaching unauthorized destinations. A single bad workload can't leak data or pivot into other systems.
All network activity is monitored and logged, giving you the detailed traffic visibility needed for security investigations and compliance.
What firewalls cover
Set the network policy. Allowlist every destination. Block exfiltration. Inspect all traffic.
Answers to common questions about firewalls and how they fit into governed AI agent infrastructure.