SonicWALL none manual SonicWALL Global VPN Client Features

Page 6

SonicWALL Global VPN Client

The SonicWALL Global VPN Client creates a Virtual Private Network (VPN) connection between your computer and the corporate network to maintain the confidentiality of private data. The Global VPN Client provides an easy-to-use solution for secure, encrypted access through the Internet or corporate dial-up facilities for remote users as well as secure wireless networking for SonicWALL Secure Wireless appliance clients using SonicWALL’s WiFiSec technology.

Custom developed by SonicWALL, the Global VPN Client combines with GroupVPN on SonicWALL Internet Security Appliances to dramatically streamline VPN deployment and management. Using SonicWALL’s Client Policy Provisioning technology, the SonicWALL administrator establishes the VPN connections policies for the Global VPN Clients. The VPN configuration data is transparently downloaded from the SonicWALL VPN Gateway (SonicWALL Internet Security Appliance) to Global VPN Clients, removing the burden of provisioning VPN connections from the user.

SonicWALL Global VPN Client Features

The SonicWALL Global VPN Client delivers a robust IPSec VPN solution with these features:

Easy to Use - Provides an easy-to-follow Installation Wizard to quickly install the product, an easy- to-follow Configuration Wizard with common VPN deployment scenarios, point-and-click activation of VPN connections, and streamlined management tools to minimize support requirements.

Client Policy Provisioning - Using only the IP address or Fully Qualified Domain Name (FQDN) of the SonicWALL VPN gateway, the VPN configuration data is automatically downloaded from the SonicWALL VPN gateway via a secure IPSec tunnel, removing the burden from the remote user of provisioning VPN connections.

XAUTH Authentication with RADIUS - Provides added security with user authentication after the client has been authenticated via a RADIUS server.

VPN Session Reliability - Allows automatic redirect in case of a SonicWALL VPN gateway failure. If a SonicWALL VPN gateway is down then the Global VPN Client can go through another SonicWALL VPN gateway.

Multiple Subnet Support - Allows Global VPN Client connections to more than one subnet in the configuration to increase networking flexibility.

Third-Party Certificate Support - Supports VeriSign, Entrust, Microsoft, and Netscape Certificate Authorities (CAs) for enhanced user authentication.

Tunnel All Support - Provides enhanced security by blocking all traffic not directed to the VPN tunnel to prevent Internet attacks from entering the corporate network through a VPN connection.

DHCP over VPN Support - Allows IP address provisioning across a VPN tunnel for the corporate network while allowing WAN DHCP for Internet Access from the ISP.

Secure VPN Configuration - Critical Global VPN Client configuration information is locked from the user to prevent tampering.

AES and 3DES Encryption - Supports 168-bit key 3DES (Data Encryption Standard) and the new U.S. Government encryption standard AES (Advanced Encryption Standard) for dramatically increased security. AES requires SonicOS 2.0.

GMS Management - Allows Global VPN Client connections to be managed by SonicWALL’s award- winning Global Management System (GMS).

Multi-Platform Client Support - Supports Windows 98 SE, Windows ME, Windows NT 4.0 (service pack 6 or later), Windows 2000 Professional (service pack 3 or later), Windows XP Professional, Windows XP Home Edition, and Windows XP Tablet PC Edition.

NAT Traversal - Enables Global VPN Client connections to be initiated from behind any device performing NAT (Network Address Translation). The SonicWALL Global VPN Client encapsulates IPSec VPN traffic to pass through NAT devices, which are widely deployed to allow local networks to use one external IP address for an entire network.

SonicWALL Global VPN Client Page 5

Image 6
Contents Global VPN Client Administrators Guide Table of Contents Configuring SonicWALL Security Appliances for Managing VPN Connection PoliciesInstallShield Silent Response File Appendix a Creating and Deploying the Default.rcf File forAppendix B SonicWALL Global VPN Client Installation Using Command Line InterfaceAppendix D Installing the Global VPN Client with a Appendix E- Log Viewer MessagesSonicWALL Global VPN Client Features SonicWALL Global VPN ClientNew Features in SonicWALL Global VPN Client Global VPN Client Enterprise/Global Security Client Using the Right Administrator’s GuidesAbout this Guide SonicWALL Global Security Client and Global VPN ClientCopyright Notice Conventions Used in this GuideIcons Used in this Guide SonicWALL Pocket Global VPN ClientInstalling the SonicWALL Global VPN Client Limited WarrantyUsing the Setup Wizard Installing the SonicWALL Global VPN Client Adding VPN Connection Policies Understanding VPN Connection PoliciesUsing the New Connection Wizard Understanding Digital CertificatesCreating a VPN Connection Policy Select Remote Access or Office Gateway and then click Next Importing a VPN Configuration File Configuring a Dial-Up VPN Connection Launching the SonicWALL Global VPN Client Making VPN ConnectionsAccessing Redundant VPN Gateways Enabling a VPN Connection Connecting changes to ProvisioningEstablishing Multiple Connections Username and Password Authentication Entering a Pre-Shared KeySelecting a Certificate Disabling a VPN Connection Checking the Status of a VPN ConnectionConnection Warning Creating a VPN Policy Shortcut Specifying Global VPN Client Launch Options Managing the Global VPN Client System Tray IconOpen SonicWALL Global VPN Client Opens the program window Managing VPN Connection Policy Properties GeneralUser Authentication Peers Peer Information Dialog BoxManaging VPN Connection Policy Properties Connection Virtual IP ConfigurationStatus ActivityRenaming a Connection Policy Managing VPN Connection PoliciesArranging Connection Policies Deleting a Connection PolicyTroubleshooting the SonicWALL Global VPN Client Managing CertificatesType The type of message Information, Error, or Warning Understanding the Global VPN Client LogConfiguring the Log Configuring Auto-LoggingGenerating a Help Report Viewing Help Topics Accessing Technical SupportUninstalling the SonicWALL Global VPN Client Windows 98 SE Double-clickAdd/Remove ProgramsSonicWALL Global VPN Client Licenses Group VPN Connections Supported by Each SonicWALL ModelDownloading Global VPN Client Software and Documentation Select Global VPN Client from the Applicable Services menuActivating Your SonicWALL Global VPN Clients Global VPN Client License Support by SonicWALL ModelSoftware License Agreement for Sonicwall Globalvpn Client Exports License Miscellaneous How the Global VPN Client uses the default.rcf File Deploying the default.rcf FileSonicWALL Global VPN Client Support Replace the Existing SonicWALL Global VPN Client.rcf File SWClientPolicy version =9.0 Creating the default.rcf FileDefault.rcf File Tag Descriptions FlagsPage SWClientPolicy version=9.0 Connections Sample default.rcf FileSWClientPolicy Flags PeerPeer Connection Peer Connection Connections /SWClientPolicy Troubleshooting the deafult.rcf File Creating the Silent InstallationSetup.exe -s Playing Back the Silent InstallationUsing Setup.log to Check for Errors Setup.exe -s -f1path\ResponseFileCommand Line Options Command Line ExamplesAppendix E- Log Viewer Messages Log Viewer MessagesDiffie-Hellman group generator length has not been set Failed to build dead peer detection packet Failed to construct quick mode hash payload Failed to find Oakley group specified in the SA payload Failed to set the Ipsec ESP attributes into the phase 2 SA Is not a valid XAuth status Info Peer certificate missing key value Received invalid message ID notify Sending phase 2 delete for SA lifetime for phase 2 is seconds Received an unencrypted packet when crypto active SonicWALL Global VPN Client 4.0 Administrator’s Guide SonicWALL, Inc Rev C, 10/07

none specifications

SonicWALL is a leading cybersecurity company that specializes in providing advanced network security solutions, primarily focused on firewalls and unified threat management. Established in 1991, SonicWALL has become synonymous with high-performance security and is particularly well-regarded for its adaptable solutions that cater to businesses of all sizes.

One of the main features of SonicWALL products is their next-generation firewall technology. These firewalls combine traditional firewall capabilities with modern security features such as intrusion prevention, malware protection, and content filtering. This enables businesses to comply with regulatory requirements while safeguarding their networks against ever-evolving cyber threats. SonicWALL's firewalls are equipped with advanced security protocols that offer deep packet inspection, allowing them to analyze the data flowing through the network meticulously.

SonicWALL's Cloud App Security is another significant component of its technology suite. This service secures cloud applications by providing essential tools that help protect against data breaches and insecure usage. Through broad compatibility with various cloud services, businesses can maintain security without sacrificing the efficiency and productivity benefits that cloud applications provide.

In terms of characteristics, SonicWALL emphasizes simplicity and ease of management. Their products are designed with intuitive user interfaces that simplify configuration and ongoing management. This allows even non-technical users to manage complex security protocols effectively. The SonicWALL Global Management System (GMS) enables centralized management for multiple appliances, ensuring that administrators can monitor their entire network security posture from a single dashboard.

SonicWALL also incorporates advanced threat detection technologies, including its Capture Advanced Threat Protection (ATP) service. Capture ATP leverages deep learning and sandboxing techniques to identify and isolate potential threats before they can affect the network. This proactive approach to security enables businesses to respond to new threats in real-time, enhancing overall protection.

Furthermore, SonicWALL offers scalable solutions, making it a suitable choice for both small businesses and large enterprises. Organizations can select from a range of appliances and services that can be easily scaled as their needs evolve. With a strong focus on customer support and continual innovation, SonicWALL remains a trusted partner in the sphere of network security. Overall, SonicWALL's blend of advanced features, user-friendly management, and robust technologies makes it a formidable player in the cybersecurity landscape.