Manualshelf

Specification Sheet

ManualsBrandsSonicwall ManualsComputers & AccessoriesSonicWall | SOHO Wireless-N Secure Upgrade Plus 3YR | 01-SSC-0648
12345678910
5
Global management and reporting
For larger, distributed enterprise deployments, the optional
SonicWall Global Management System (GMS) provides
administrators a unied, secure and extensible platform to
manage SonicWall security appliances and X-Series switches. It
enables enterprises to easily consolidate the management of
security appliances, reduce administrative and troubleshooting
complexities and governs all operational aspects of the
security infrastructure including centralized policy management
and enforcement, real-time event monitoring, analytics and
reporting, and more. GMS also meets the rewall change
management requirements of enterprises through a workow
automation feature. GMS provides a better way to manage
network security by business processes and service levels that
dramatically simplify the lifecycle management of your overall
security environments rather than on a device-by-device basis.
Reassembly-Free Deep Packet Inspection
(RFDPI) engine
The RFDPI engine provides superior threat protection and
application control without compromising performance. This
patented engine inspects the trafc stream to detect threats
at Layers 3-7. The RFDPI engine takes network streams through
extensive and repeated normalization and decryption in
order to neutralize advanced evasion techniques that seek
to confuse detection engines and sneak malicious code
into the network. Once a packet undergoes the necessary
preprocessing, including SSL decryption, it is analyzed against
a single proprietary memory representation of three signature
databases: intrusion attacks, malware and applications. The
connection state is then advanced to represent the position
of the stream relative to these databases until it encounters
a state of attack, or another “match” event, at which point a
pre-set action is taken. As malware is identied, the SonicWall
rewall terminates the connection before any compromise
can be achieved and properly logs the event. However, the
engine can also be congured for inspection only or, in the
case of application detection, to provide Layer 7 bandwidth
management services for the remainder of the application
stream as soon as the application is identied.