TOSIBOX® Lock for Container

Key Features:

Connect your IPCs, HMIs, PLCs and controllers

TOSIBOX® Lock for Container is a software-only way of connecting industrial IoT devices running on Linux to your TOSIBOX® network. It serves as an endpoint for secure remote connections.
With TOSIBOX® Lock for Container, services running on the connected device can be securely accessed over the Internet and most LAN and WAN networks through highly encrypted VPN connection.
TOSIBOX® Lock for Container is compatible with all existing TOSIBOX® products. Modularity of the products enables easy and fast extension of networks.
• Manage any service, access any device
• Simple installation and fast activation
• No need for supervision, runs silently in the background
• Can run behind NAT and in firewalled networks
• VPN throughput limited only by network connection
• End-to-end encryption between TOSIBOX® devices
• Audited and patented security

Product Details

Advantages of TOSIBOX®

Simple Simple
Build and manage secure IoT
infrastructure in minutes
Tested & audited security
Unlimited expandability and flexibility
 Timeless  Timeless
Deals with legacy and future systems
 Unique  Unique
Globally patented point-to-point connection


TOSIBOX® Lock for Container Technical Data

Product codes


Recommended software requirements

• Any 64-bit Linux OS supported by Docker software (such as CentOS, Fedora, Ubuntu or Debian)
• Docker Engine – Community v19 or later installed and running (
• Installation requires sudo or root level user rights
Recommended system requirements

• 50 MB RAM
• 50 MB hard disk space
• ARM 32-bit or 64-bit, Intel or AMD 64-bit dual core processor
• Internet connectivity

• Patented TOSIBOX® connection method
• PKI with 4096-bit RSA key
• Compatible with all TOSIBOX® devices and products
• Uses Remote Matching for including to your TOSIBOX® secured network
• Uses device firewall for security
• TOSIBOX® software separated from system software
WAN connection features • Serves as an endpoint for TOSIBOX® secure VPN tunnel
• VPN connections to/from Virtual Central Lock
• VPN connection from TOSIBOX® Key
• Works in all Internet connections (operator independent)
• Supports HTTP proxy servers with and without authentication
• Works with dynamic, static and private IP addresses
• Up to 2 concurrent VPN connections
• VPN throughput limited only by network connection
• Layer 3 connections
• LAN access if supported by the device
User Interface

Packed with TOSIBOX® web UI for remote configuration

Required open firewall ports

• Outbound TCP: 80, 443, 8000, 57051
• Outbound UDP: random, 1-65535
• Inbound: none

Feature TOSIBOX® Lock (hardware) TOSIBOX® Lock for Container
Operating environment Hardware device Software running on Docker
Internet connectivity 4G, WLAN, ethernet
Layer 3
Layer 2 (Sub Lock)
1:1 NAT
LAN access LAN access and device scanner for LAN network LAN access, device scanner for Docker network
Matching Physical and remote Remote
Firewall Embedded firewall Uses device’s firewall
Open firewall ports from internet
End-to-end VPN
SW auto-update
User access management From TOSIBOX® Key Client or
TOSIBOX® Virtual Central Lock software
Via TOSIBOX® Key Client or
TOSIBOX® Virtual Central Lock software