Filter
Top Products
Introduction
41
SonicOS 5.8.1 Administrator Guide
features are capable of utilizing DPI-SSL: Gateway Anti-Virus, Gateway Anti-Spyware,
Intrusion Prevention, Content Filtering, Application Firewall, Packet Capture and Packet
Mirror. DPI-SSL is initially available on NSA-3500 and above hardware platforms.
• Dynamic DNS per Interface - Provides the ability to assign a Dynamic DNS (DDNS) profile
to a specific WAN interface. This allows administrators who are configuring multiple WAN
load balancing to advertise a predictable IP address to the DDNS service.
• Increased UTM Connection Support - Provides the ability to increases the number of
simultaneous connections on which SonicWALL security appliances can apply Unified
Threat Management (UTM) services (Application Firewall, Anti-Spyware, Gateway Anti-
Virus, and IPS engine). This feature is intended for high-end (E-Class) customers who have
a need to support a large number of concurrent connections. (Note: There is a slight
performance decrease when this option is enabled.)
• FairNet for SonicPoint-N - Provides the ability to create policies that equally distribute
bandwidth for all wireless users connected to a SonicPoint-N.
• MAC-IP Anti-Spoof Detection and Prevention - Provides additional protection against
MAC address and IP address based spoofing attacks (such as Man-in-the-Middle attacks)
through configurable Layer 2 and Layer 3 admission control.
• Packet Mirroring - Provides the ability to capture copies of specified network packets from
other ports. This is commonly used for network appliances that require monitoring of
network traffic, such as an intrusion-detection system. Customers can now gather data from
one of the other ports on a SonicWALL to look for threats and vulnerabilities and help aid
with diagnostics and troubleshooting.
• Route-based VPN with Dynamic Routing Support - Extends support for advanced
routing (either OSPF or RIP) to VPN networks. This can be used to simplify complex VPN
deployments by enabling dynamic routing to determine the best path traffic should take
over a VPN tunnel.
• Signature Download through a Proxy Server - Provides the ability for SonicWALL
security appliances that operate in networks where they must access the Internet through
a proxy server to download signatures. This feature also allows for registration of
SonicWALL security appliances through a proxy server without compromising privacy.
• Single Sign-on for Terminal Services and Citrix - Provides support for transparent
authentication of users running Terminal Services or Citrix. This transparent authentication
enables Application Firewall and CFS policy enforcement in Terminal Services and Citrix
environments.
• SSL-VPN Enhancements - SonicOS Enhanced 5.6.0.0 provides a number of SSL-VPN
enhancements:
–
Bookmarks for SSH and RDP - Provides support for users to create bookmarks on the
SSL -VPN Virtual Office to access systems using SSH, RDP, VNC, and telnet services.
–
Granular User Controls - Provides network administrators with the ability to configure
different levels of policy access for NetExtender users based on user ID.
–
One-Time Password - Provides additional security by requiring users to enter a
randomly generated, single-use password in addition to the standard user name and
password credentials.
–
Virtual Assist - A provides a remote assistance tool to SonicWALL security appliance
users. SonicWALL Virtual Assist is a thin client remote support tool provisioned via a
Web browser that enables a technician to assume control of a customer's PC or laptop
for the purpose of providing remote technical assistance. Note: The SonicOS Virtual
Assist client is currently not supported on Windows 7 and Windows Vista platforms.