Filter
Top Products
Introduction
38
SonicOS 5.8.1 Administrator Guide
capable of utilizing DPI-SSL: Gateway Anti-Virus, Gateway Anti-Spyware, Intrusion
Prevention, Content Filtering, Application Control, Packet Monitor and Packet Mirror. DPI-
SSL is supported on SonicWALL NSA models 240 and higher.
• Gateway Anti-Virus Enhancements (Cloud GAV) - The Cloud Gateway Anti-Virus feature
introduces an advanced malware scanning solution that compliments and extends the
existing Gateway AV scanning mechanisms present on SonicWALL firewalls to counter the
continued growth in the number of malware samples in the wild. Cloud Gateway Anti-Virus
expands the Reassembly Free Deep Packet Inspection engine capabilities by consulting
with the data center based malware analysis servers. This approach keeps the foundation
of RFDPI-based malware detection by providing a low-latency, real-time solution that is
capable of scanning unlimited numbers of files of unlimited size on all protocols that are
presently supported without adding any significant incremental processing overhead to the
appliances themselves. With this additional layer of security, SonicWALL's Next
Generation Firewalls are able to extend their current protection to cover multiple millions of
pieces of malware.
• NTP Authentication - When adding a Network Time Protocol server, the Add NTP Server
dialog box provides a field to specify the NTP authentication type, such as MD5. Fields are
also available to specify the trust key ID, the key number and the password.
• Link Aggregation - Link Aggregation provides the ability to group multiple Ethernet
interfaces to form a trunk which looks and acts like a single physical interface. This feature
is useful for high end deployments requiring more than 1 Gbps throughput for traffic flowing
between two interfaces. This functionality is available on all NSA E-Class platforms.
SonicOS 5.8.0.0 supports Static Link Aggregation with the ability to aggregate up to 4
ports
into a single link. A round-robin algorithm is used for load balancing traffic across the
interfaces in an aggregated link.
• Port Redundancy - Port Redundancy provides the ability to configure a redundant physical
interface for any Ethernet interface in order to provide a failover path in case a link goes
down. Port Redundancy is available on all NSA E-Class platforms.
When the primary interface is active, it handles all tr
affic from/to the interface. When the
primary interface goes down, the backup interface takes over and handles all outgoing/
incoming traffic. When the primary interface comes up again, it takes over all the traffic
handling duties from the backup interface.
When Port Redundancy, High Availability and W
AN Load Balancing are used together, Port
Redundancy takes precedence followed by High Availability, then followed by WAN Load
Balancing.
• Content Filtering Enhancements - The CFS enhancements provide policy management
of network traffic based on Application usage, User activity, and Content type.
Administrators are now able to create multiple CFS policies per user group and set
restrictive 'Bandwidth Management Policies' based on CFS categories.
• IPFIX and NetFlow Reporting - This feature enables administrators to gain visibility into
traffic flows and volume through their networks, helping them with tracking, auditing and
billing operations. This feature provides standards-based support for NetFlow Reporting
and IPFIX. The data exported through IPFIX contains information about network flows such
as applications, users, and URLs extracted through Application Intelligence, along with
standard attributes such as source/destination IP address (includes support for IPv6
networks), source/destination port, IP protocol, ingress/egress interface, sequence
number, timestamp, number of bytes/packets, and more.
• Comprehensive Anti-Spam Service (CASS) 2.0 - The Comprehensive Anti-Spam Service
(CASS) feature provides a quick, efficient, and effective way to add anti-spam, anti-
phishing, and anti-virus capabilities to your SonicWALL security appliance. This feature