Filter
Top Products
Application Control
619
SonicOS 5.8.1 Administrator Guide
external network access based on various criteria. You can use Packet Monitor to take a
deeper look at application traffic, and can select among various bandwidth management
settings to reduce network bandwidth usage by an application.
Based on SonicWALL’s Reassembly Free Deep Packet Inspection technology, Application
Control also features intelligent prevention functionality which allows you to create custom,
policy-based actions. Examples of custom actions include the following:
• Blocking entire applications based on their signatures
• Blocking application features or sub-components
• Bandwidth throttling for file types when using the HTTP or FTP protocols
• Blocking an attachment
• Sending a custom block page
• Sending a custom email reply
• Redirecting an HTTP request
• Sending a custom FTP reply over an FTP control channel
While Application Control primarily provides application level access control, application laye
r
bandwidth management and data leakage prevention, it also includes the ability to create
custom application or protocol match signatures. You can create a custom policy with App
Rules that matches any protocol you wish, by matching a unique piece of the protocol. See
“Custom Signature” on page 702.
Application Control provides excellent functionality for preventing the accidental transfer of
proprietary documents. For example, when using the automatic address completion feature of
Outlook Exchange, it is a common occurrence for a popular name to complete to the wrong
address. See the following figure for an example.
Benefits of Application Control
The Application Control functionality provides the following benefits:
• Application based configuration makes it easier to configure policies for application control.
• The Application Control subscription service provides updated signatures as new attacks
emerge.
• The related Application Intelligence functionality, as seen in App Flow Monitor and the Real
Time Visualization Monitor, is available upon registration as a 30-day free trial App
Visualization license. This allows any registered SonicWALL appliance to clearly display
information about application traffic in the network. The App Visualization and App Control
licenses are also included with the SonicWALL Security Services license bundle. Note that
the feature must be enabled in the SonicOS management interface to become active.