The Dome

Multi-Layer Edge Security

You got breached because attackers moved through your network unchecked.
The Dome stops them at every layer.

Get Protected Now See How It Works

50+

Global PoPs

<10ms

Edge Latency

99.99%

Uptime SLA

24/7

SOC Monitoring

THE PROBLEM

Your Perimeter Is Swiss Cheese

Traditional security stops at the firewall. But attackers don't.
Once inside, they move laterally — from endpoint to database, from API to admin panel.
You need protection at every layer.

Edge Only

WAF blocks the front door. Attacker walks through the API. 47% of breaches start with valid credentials.

Flat Network

Everything talks to everything. One compromised endpoint means total access. Lateral movement takes minutes.

Blind Spots

You can't stop what you can't see. East-west traffic is invisible. Attackers live in your blind spots for months.

THE SOLUTION

Four Layers. Total Protection.

The Dome wraps your infrastructure in concentric layers of security. Every packet inspected. Every connection verified. Every threat stopped.

Coraza WAF

Application layer protection. OWASP Top 10. SQL injection. XSS. ModSecurity rules. Stops attacks before they reach your app.

L3 - L7

Cilium

Network policies with identity awareness. mTLS everywhere. Encrypted east-west traffic. Service mesh without the complexity.

L2 Isolation

ARP protection. MAC filtering. Network segmentation at the data link layer. Stops lateral movement cold.

Kernel

eBPF / Tetragon

Runtime enforcement at the kernel level. Syscall filtering. Process monitoring. No blind spots. No agents.

PRICING

Choose Your Protection

Start with what you need. Scale as you grow.

Dome Edge

Public-facing protection

$299/mo

Protect your websites, APIs, and public applications. No agent required.

✓ Point DNS to The Dome

✓ WAF + Cilium + eBPF at edge

✓ DDoS protection

✓ Bot mitigation

✓ Real-time threat dashboard

✓ Nearest PoP routing

✗ Internal traffic protection

✗ Zero-trust mesh

✗ Service-to-service mTLS

Protect Your Edge

Dome Mesh

Internal infrastructure protection

$599/mo

Zero-trust for your internal services. Every connection authenticated and encrypted.

✓ Kuma dataplane on your services

✓ mTLS everywhere

✓ Service-to-service policies

✓ Lateral movement prevention

✓ Full traffic observability

✓ Control plane hosted by H²

✗ Public traffic filtering

✗ WAF protection

✗ DDoS mitigation

Secure Your Mesh

Dome Complete

Total protection

$999/mo

Edge + Mesh. Public and internal. Everything protected, end-to-end.

✓ Everything in Edge

✓ Everything in Mesh

✓ End-to-end visibility

✓ Unified policy management

✓ Priority support

✓ Dedicated security engineer

Full Protection

ONBOARDING

Protected in Minutes

Point Your DNS

CNAME to dome.h2security.io

2 min

We Create Your Zone

Isolated environment in nearest PoP

Instant

Join the Mesh

Install dataplane agent. One script.

10 min

You're Protected

Real-time dashboard. Full visibility.

✓

GLOBAL NETWORK

Close to Your Users. Everywhere.

Datacenter regions worldwide. Sub-10ms latency to most users.

Americas

NYC New York SFO San Francisco TOR Toronto ATL Atlanta MIA Miami

Europe

AMS Amsterdam LON London FRA Frankfurt PAR Paris MAD Madrid

Asia-Pacific

SGP Singapore BLR Bangalore SYD Sydney TYO Tokyo HKG Hong Kong

Africa

JNB Johannesburg LOS Lagos NBO Nairobi CAI Cairo CMN Casablanca