Filter
Top Products
799
SonicOS 5.8.1 Administrator Guide
CHAPTER 57
Chapter 57: Configuring Server DPI-SSL Settings
DPI-SSL > Server SSL
This chapter contains the following sections:
• “DPI-SSL Overview” on page 799
• “Configuring Server DPI-SSL Settings” on page 800
DPI-SSL Overview
Deep Packet Inspection of Secure Socket Layer (DPI-SSL) extends SonicWALL’s Deep Packet
Inspection technology to allow for the inspection of encrypted HTTPS traffic and other SSL-
based traffic. The SSL traffic is decrypted transparently, scanned for threats and then re-
encrypted and sent along to its destination if no threats or vulnerabilities are found. DPI-SSL
provides additional security, application control, and data leakage prevention for analyzing
encrypted HTTPS and other SSL-based traffic.
The following security services and features are capable of utilizing DPI-SSL:
• Gateway Anti-Virus
• Gateway Anti-Spyware
• Intrusion Prevention
• Content Filtering
• Application Firewall
• Packet Capture
• Packet Mirror
DPI-SSL has two main deployment scenarios:
• Client DPI-SSL: Used to inspect HTTPS traffic when clients on the SonicWALL security
appliance’s LAN access content located on the WAN.
• Server DPI-SSL: Used to inspect HTTPS traffic when remote clients connect over the WAN
to access content located on the SonicWALL security appliance’s LAN.