SonicWALL none manual New Features in SonicWALL Global VPN Client

Page 7

Automatic Reconnect When Error Occurs - Allows the Global VPN Client to keep retrying a connection if it encounters a problem connecting to a peer. This feature allows the Global VPN Client to automatically make a connection to a SonicWALL VPN gateway that is temporarily disabled, without manual intervention.

Ghost Installation for Large Scale Installations - Enables the Global VPN Client’s virtual adapter to get its default address after installation and then create a ghost image.

NT Domain Logon Script Support - Allows Global VPN Clients to perform Windows NT/2000 domain authentication after establishing a secure IPSec tunnel. The SonicWALL VPN gateway passes the logon script as part of the Global VPN Client configuration. This feature allows the VPN user to have access to mapped network drives and other network services.

Dual Processor Support - Enables the Global VPN Client to operate on dual-processor computers.

Group Policy Management - Global VPN Clients access can be customized and restricted to specific subnet access (Requires SonicOS Enhanced).

Hub and Spoke VPN Access - Allows IP addressing from SonicWALL VPN Gateway’s DHCP Server to Global VPN Client for configuring a different subnet for all remote Global VPN Clients than the subnet of the LAN. Makes hub-and-spoke VPN access simpler. When a Global VPN Client successfully authenticates with the central site, it receives a virtual IP address that also grants it access to other trusted VPN sites.

Default VPN Connections File - Enables the SonicWALL administrator to configure and distribute the corporate VPN connections with the Global VPN Client software to streamline VPN client deployment.

Integration with Dial-Up Adapter - Allows Global VPN Client connections using Microsoft Dial-Up Networking or third-party dial-up applications either as an automatic backup to a broadband connection or as the primary connection.

Single VPN Connection to any SonicWALL Secure Wireless Appliance for Roaming - Allows users to use a single VPN connection policy to access the networks of multiple SonicWALL Secure Wireless appliances.

Automatic Configuration of Redundant Gateways from DNS - When an IPSec gateway domain name resolves to multiple IP addresses, the Global VPN Client (version 2.1.0.0 or higher) uses the IP addresses in the list as failover gateways.

New Features in SonicWALL Global VPN Client 4.0

The following new features are supported on the SonicWALL Global VPN Client 4.0 release:

Tunnel State Display Enhancement - The Global VPN Client now provides additional information about the state of VPN tunnels. In addition to the states of enabled, disabled, and connected, the Global VPN Client now indicates when tunnels are authenticating, provisioning, and connecting.

Tunnel Status Pop-Up Window - The Global VPN Client now alerts users when tunnels are connected or disconnected by displaying a small pop-up window.

Smart Card and USB Token Authentication - The Global VPN Client is now integrated with the Microsoft Cryptographic Application Program (MS CryptoAPI or MSCAPI), which enables the Global VPN Client to support user authentication using digital certificates on Smart cards and USB tokens.

NAT-T-IKE-03 Draft Support - To improve compatibility with NAT-T-IKE-03, UDP encapsulation now uses port 4500 instead of port 500.

DNS Redirect - DNS queries to DNS suffix associated with Virtual Adapter are not sent on the physical adapter.

Tunnel All Support Enhancement - Provides the ability to route clear traffic to directly connected network interfaces that are configured with the Route All policy, which is generally used in the WLAN zone.

Program Auto-Start on VPN Connection - Automatically launches a program, with optional arguments, when successful VPN connections are established, as specified in the Connection Properties dialog box.

Page 6 SonicWALL Global VPN Client 4.0 Administrator’s Guide

Image 7
Contents Global VPN Client Administrators Guide Table of Contents Managing VPN Connection Policies Configuring SonicWALL Security Appliances forCommand Line Interface Appendix a Creating and Deploying the Default.rcf File forAppendix B SonicWALL Global VPN Client Installation Using InstallShield Silent Response FileAppendix E- Log Viewer Messages Appendix D Installing the Global VPN Client with aSonicWALL Global VPN Client SonicWALL Global VPN Client FeaturesNew Features in SonicWALL Global VPN Client SonicWALL Global Security Client and Global VPN Client Using the Right Administrator’s GuidesAbout this Guide Global VPN Client Enterprise/Global Security ClientSonicWALL Pocket Global VPN Client Conventions Used in this GuideIcons Used in this Guide Copyright NoticeLimited Warranty Installing the SonicWALL Global VPN ClientUsing the Setup Wizard Installing the SonicWALL Global VPN Client Understanding VPN Connection Policies Adding VPN Connection PoliciesUnderstanding Digital Certificates Using the New Connection WizardCreating a VPN Connection Policy Select Remote Access or Office Gateway and then click Next Importing a VPN Configuration File Configuring a Dial-Up VPN Connection Making VPN Connections Launching the SonicWALL Global VPN ClientConnecting changes to Provisioning Accessing Redundant VPN Gateways Enabling a VPN ConnectionEstablishing Multiple Connections Entering a Pre-Shared Key Username and Password AuthenticationSelecting a Certificate Checking the Status of a VPN Connection Disabling a VPN ConnectionConnection Warning Creating a VPN Policy Shortcut Managing the Global VPN Client System Tray Icon Specifying Global VPN Client Launch OptionsOpen SonicWALL Global VPN Client Opens the program window General Managing VPN Connection Policy PropertiesUser Authentication Peer Information Dialog Box PeersManaging VPN Connection Policy Properties Activity Virtual IP ConfigurationStatus ConnectionDeleting a Connection Policy Managing VPN Connection PoliciesArranging Connection Policies Renaming a Connection PolicyManaging Certificates Troubleshooting the SonicWALL Global VPN ClientUnderstanding the Global VPN Client Log Type The type of message Information, Error, or WarningConfiguring Auto-Logging Configuring the LogGenerating a Help Report Double-clickAdd/Remove Programs Accessing Technical SupportUninstalling the SonicWALL Global VPN Client Windows 98 SE Viewing Help TopicsGroup VPN Connections Supported by Each SonicWALL Model SonicWALL Global VPN Client LicensesGlobal VPN Client License Support by SonicWALL Model Select Global VPN Client from the Applicable Services menuActivating Your SonicWALL Global VPN Clients Downloading Global VPN Client Software and DocumentationSoftware License Agreement for Sonicwall Globalvpn Client Exports License Miscellaneous Deploying the default.rcf File How the Global VPN Client uses the default.rcf FileSonicWALL Global VPN Client Support Replace the Existing SonicWALL Global VPN Client.rcf File Flags Creating the default.rcf FileDefault.rcf File Tag Descriptions SWClientPolicy version =9.0Page Flags Peer Sample default.rcf FileSWClientPolicy SWClientPolicy version=9.0 ConnectionsPeer Connection Peer Connection Connections /SWClientPolicy Creating the Silent Installation Troubleshooting the deafult.rcf FileSetup.exe -s -f1path\ResponseFile Playing Back the Silent InstallationUsing Setup.log to Check for Errors Setup.exe -sCommand Line Examples Command Line OptionsLog Viewer Messages Appendix E- Log Viewer MessagesDiffie-Hellman group generator length has not been set Failed to build dead peer detection packet Failed to construct quick mode hash payload Failed to find Oakley group specified in the SA payload Failed to set the Ipsec ESP attributes into the phase 2 SA Is not a valid XAuth status Info Peer certificate missing key value Received invalid message ID notify Sending phase 2 delete for SA lifetime for phase 2 is seconds Received an unencrypted packet when crypto active SonicWALL Global VPN Client 4.0 Administrator’s Guide SonicWALL, Inc Rev C, 10/07

none specifications

SonicWALL is a leading cybersecurity company that specializes in providing advanced network security solutions, primarily focused on firewalls and unified threat management. Established in 1991, SonicWALL has become synonymous with high-performance security and is particularly well-regarded for its adaptable solutions that cater to businesses of all sizes.

One of the main features of SonicWALL products is their next-generation firewall technology. These firewalls combine traditional firewall capabilities with modern security features such as intrusion prevention, malware protection, and content filtering. This enables businesses to comply with regulatory requirements while safeguarding their networks against ever-evolving cyber threats. SonicWALL's firewalls are equipped with advanced security protocols that offer deep packet inspection, allowing them to analyze the data flowing through the network meticulously.

SonicWALL's Cloud App Security is another significant component of its technology suite. This service secures cloud applications by providing essential tools that help protect against data breaches and insecure usage. Through broad compatibility with various cloud services, businesses can maintain security without sacrificing the efficiency and productivity benefits that cloud applications provide.

In terms of characteristics, SonicWALL emphasizes simplicity and ease of management. Their products are designed with intuitive user interfaces that simplify configuration and ongoing management. This allows even non-technical users to manage complex security protocols effectively. The SonicWALL Global Management System (GMS) enables centralized management for multiple appliances, ensuring that administrators can monitor their entire network security posture from a single dashboard.

SonicWALL also incorporates advanced threat detection technologies, including its Capture Advanced Threat Protection (ATP) service. Capture ATP leverages deep learning and sandboxing techniques to identify and isolate potential threats before they can affect the network. This proactive approach to security enables businesses to respond to new threats in real-time, enhancing overall protection.

Furthermore, SonicWALL offers scalable solutions, making it a suitable choice for both small businesses and large enterprises. Organizations can select from a range of appliances and services that can be easily scaled as their needs evolve. With a strong focus on customer support and continual innovation, SonicWALL remains a trusted partner in the sphere of network security. Overall, SonicWALL's blend of advanced features, user-friendly management, and robust technologies makes it a formidable player in the cybersecurity landscape.