Filter
Top Products
Network > Interfaces
262
SonicOS 5.8.1 Administrator Guide
Configuring Security Services (Unified Threat Management)
The settings that you enable in this section will control what type of malicious traffic you detect
in IPS Sniffer Mode. Typically you will want to enable Intrusion Prevention, but you may also
want to enable other Security Services such as Gateway Anti-Virus or Anti-Spyware.
To enable Security Services, your SonicWALL must be licensed for them and the signatures
must be downloaded from the SonicWALL Data Center. For complete instructions on enabling
and configuring IPS, GAV, and Anti-Spyware, see the Security Services section in this guide.
Configuring Logging
You can configure logging to record entries for attacks that are detected by the SonicWALL.
To enable logging, perform the following steps:
Step 1 Select the Log tab, Categories folder from the navigation panel.
Step 2 Under Log Categories, select All Categories in the View Style drop-down list.
Step 3 In the Attacks category, enable the checkboxes for Log, Alerts, and Syslog.
Step 4 Click Apply.
Connecting the Mirrored Switch Port to a IPS Sniffer Mode Interface
Use a standard Cat-5 Ethernet cable to connect the mirrored switch port to either interface in
the Bridge-Pair. Network traffic will automatically be sent from the switch to the SonicWALL
where it can be inspected.
Consult the switch documentation for instructions on setting up the mirrored port.
Connecting and Configuring the WAN Interface to the Data Center
Connect the WAN port on the SonicWALL, typically port X1, to your gateway or to a device with
access to the gateway. The SonicWALL communicates with the SonicWALL Data Center
automatically. For detailed instructions on configuring the WAN interface, see “Configuring a
WAN Interface” on page 225.
Configuring Wire Mode
Adding to the broad collection of traditional modes of SonicOS interface operation, including all
LAN modes (Static, NAT, Transparent Mode, L2 Bridge Mode, Portshield Switch Mode), and all
WAN modes (Static, DHCP, PPPoE, PPTP, and L2TP), SonicOS 5.8 introduces Wire-Mode,
which provides four new methods non-disruptive, incremental insertion into networks.
Restrict analysis at resource limit