SonicWALL manual SonicWALL NSA 5000/4500/3500 Getting Started Guide

Page 46

3.The Enable Outbound Inspection feature is available for SMTP traffic, such as for a mail server that might be hosted on the DMZ. Enabling outbound inspection for SMTP scans mail that is delivered to the internally hosted SMTP server for viruses.

4.For each protocol you can restrict the transfer of files with specific attributes by clicking on the Settings button under the protocol. In the Settings dialog box, you can configure the following:

Restrict Transfer of password-protected Zip files - Disables the transfer of password protected ZIP files over any enabled protocol. This option only functions on protocols that are enabled for inspection.

Restrict Transfer of MS-Office type files containing macros (VBA 5 and above) - Disables the transfers of any MS Office 97 and above files that contain VBA macros.

Restrict Transfer of packed executable files (UPX, FSG, etc.) - Disables the transfer of packed executable files. Packers are utilities that compress and sometimes encrypt executables. Although there are legitimate applications for these, they may be used with the intent of obfuscation, and this makes the executables less detectable by anti-virus applications. The packer adds a header that expands the file in memory, and then executes that file. SonicWALL Gateway Anti-Virus currently recognizes the most common packed formats: UPX, FSG, PKLite32, Petite, and ASPack.

5.Click Configure Gateway AV Settings. The Gateway AV Settings window allows you to configure clientless notification alerts and create a SonicWALL GAV exclusion list.

6.In the Gateway AV Config View window, to suppress the sending of email messages (SMTP) to clients from SonicWALL GAV when a virus is detected in an email or attachment, check the Disable SMTP Responses box.

SonicWALL NSA 5000/4500/3500 Getting Started Guide Page 45

Page 45 Page 47
Image 46
Page 45 Page 47
Contents Getting Started Guide Document Contents SonicWALL NSA Getting Started GuideBack SonicWALL NSA SeriesPre-Configuration Tasks This SectionCheck Package Contents Obtain Internet Service Provider ISP Information Obtain Configuration InformationAdministrator Information Registration InformationFront Panel Power Supply Back Panel8 The Back Panel Registering Your Appliance on mysonicwall.com Before You Register Registering and Licensing Your Appliance on mysonicwall.com Product RegistrationGateway Services Licensing Security Services and SoftwareService Bundles Support ServicesSonicWALL NSA 5000/4500/3500 Getting Started Guide Registering a Second Appliance as a Backup Registration Next StepsDeployment Scenarios ABC Selecting a Deployment ScenarioScenario a NAT/Route Mode Gateway Scenario B State Sync Pair in NAT/Route Mode Scenario C L2 Bridge Mode Connecting the WAN Port Initial SetupSystem Requirements Connecting the LAN Port Applying PowerAccessing the Management Interface Accessing the Setup WizardConnecting to Your Network Testing Your ConnectionActivating Licenses in SonicOS Upgrading Firmware on Your SonicWALL Saving a Backup Copy of Your PreferencesObtaining the Latest Firmware Using SafeMode to Upgrade Firmware Upgrading the Firmware with Current SettingsUpgrading the Firmware with Factory Defaults On the System Settings page, click Upload New FirmwareUploaded Firmware New Confirmation dialog box, click OK to proceedInitial High Availability Setup Configuring a State Sync Pair in NAT/Route ModeScenario B Configuring Advanced HA Settings Configuring High AvailabilityNavigate to the High Availability Advanced 30 Configuring a State Sync Pair in NAT/Route Mode Synchronizing Settings Adjusting High Availability Settings Synchronizing FirmwareHA License Configuration Overview Associating Pre-Registered Appliances Click RegisterConfiguring the Primary Bridge Interface Configuring L2 Bridge ModeConnection Overview Configuring the Secondary Bridge Interface IP Assignment drop-down, select Layer 2 Bridged ModeAdditional Deployment Configuration Creating Network Access Rules WAN DMZSonicWALL NSA 5000/4500/3500 Getting Started Guide Creating a NAT Policy SonicWALL NSA 5000/4500/3500 Getting Started Guide Configuring Address Objects Configuring NAT Policies Leave Create a reflexive policy uncheckedEnabling Security Services in SonicOS Enabling Gateway Anti-VirusSonicWALL NSA 5000/4500/3500 Getting Started Guide Security Services Gateway Anti-Virus page, click Accept Enabling Intrusion Prevention ServicesSecurity Services Intrusion Prevention page, click Accept Enabling Anti-Spyware Applying Security Services to Network Zones Configuring SonicPoint Provisioning Profiles Deploying SonicPoints for Wireless AccessUpdating SonicPoint Firmware Select Enable SonicPoint 802.11g Radio tab Select Enable RadioConfiguring a Wireless Zone Assigning an Interface to the Wireless Zone Connecting the SonicPoint Troubleshooting Diagnostic Tools Using Packet CaptureUsing Ping Using the Active Connections Monitor Using Log View Deployment Configuration Reference Checklist For this Task See this ChapterSupport and Training Options Support Services Customer SupportSonicWALL Live Product Demos Knowledge PortalUser Forums Training Related Documentation Product Safety and Regulatory Information Rack Mounting the SonicWALL Safety and Regulatory InformationLithium Battery Warning Cable ConnectionsHinweis zur Lithiumbatterie Safety and Regulatory Information in GermanWeitere Hinweise zur Montage KabelverbindungenCispr 22 EN 55022 Class a FCC Part 15 Class a NoticeCanadian Radio Frequency Emissions Statement Regulatory Information for KoreaCopyright Notice Trademarks70 Notes SonicWALL NSA 5000/4500/3500 Getting Started Guide 72 Notes Rev a 01/08
Top Page Image Contents