SonicWALL Understanding IPS : Protecting Your Network with Advanced Intrusion Prevention
Page 11

SonicWALL Intrusion Prevention Service

Prevention Mechanism: The connection is terminated, preventing the user from receiving the malicious payload.

FTP

Capabilities: zip (including archives) and gzip decompression. FTP stateful code follows data port negotiations, allowing FTP data to be inspected across any operating TCP port. Suppresses the use of the FTP 'REST' (restart) request to prevent the sectional retrieval and reassembly of potentially malicious content. "The suppression of the 'REST' request can be overridden from the /diag.html page with the option 'Enable FTP 'REST' requests with Gateway AV’.

Prevention Mechanism: The connection is terminated, preventing the user from receiving the malicious payload.

IM, P2P and Proprietary Protocols

Capabilities: zip (including archives) and gzip decompression.

Prevention Mechanism: The connection is terminated, preventing the user from receiving the malicious payload.

SonicWALL Intrusion Prevention Service

This section provides an overview to the SonicWALL Intrusion Prevention Service. This section contains the following subsections:

IPS Overview

How Does IPS Work?

What is a Zone?

Benefits

IPS Overview

SonicWALL Intrusion Prevention Service is part of the SonicWALL Gateway Anti-Virus/Intrusion Prevention Service solution that provides protection against real-time for viruses, worms, Trojans, and malicious code using a patent-pending scanning engine. SonicWALL’s unique solution features a high-performance deep packet inspection architecture. It is a zone-based security service that enables easy and secure managemet. When you activate SonicWALL Intrusion Prevention Service, SonicWALL Gateway Anti-Virus is also activated. SonicWALL IPS is managed directly from the SonicWALL security appliance.

How Does IPS Work?

SonicWALL Intrusion Prevention Service (SonicWALL IPS) utilizes a configurable, high performance Deep Packet Inspection engine for extended protection of key network services such as Web, e-mail, file transfer, Windows services and DNS. SonicWALL IPS is designed to protect against application vulnerabilities as well as worms, Trojans, and peer-to-peer, spyware and backdoor exploits. IPS is set up using the SonicWALL network zones concept.

SonicWALL TZ 180 TotalSecure

11

Page 10 Page 12
Image 11
Page 10 Page 12
Contents Document Scope What is TotalSecure?Introduction Benefits of TotalSecure Every SonicWALL TotalSecure solution includes the followingBenefits SonicWALL Gateway Anti-VirusGAV Overview How Does GAV Work?SonicWALL Gateway Anti-Virus/Intrusion Prevention Features SonicWALL GAV Multi-Layered Approach Internal Network Protection Remote Site ProtectionHttp File Downloads Server Protection SonicWALL GAV ArchitectureProtocol Handling Disabling the SonicWALL GAV/IPS EngineSmtp How Does IPS Work? SonicWALL Intrusion Prevention ServiceIPS Overview What is a Zone? Spyware Threat SonicWALL Anti-Spyware Security ServiceSonicWALL Anti-Spyware SonicWALL Anti-Spyware How Does CFS Premium Work? SonicWALL Content Filtering Service PremiumCFS Overview How Does DPI Work? SonicWALL Deep Packet InspectionDPI Overview Deep Packet Inspection Flow Diagram SonicWALL Security Dashboard Security Dashboard Overview SonicWALL Security Dashboard How Does the Security Dashboard Work? What is Security Dashboard?Registering Your Appliance on MySonicWALL Registering Your Appliance on MySonicWALL Registering Your SonicWALL Security Appliance TotalSecure Configuration Task ListApplying SonicWALL GAV Protection on Interfaces Setting Up SonicWALL GAV ProtectionEnabling SonicWALL GAV Edit Zone Applying SonicWALL GAV Protection on Zones SonicOS EnhancedViewing SonicWALL GAV Status Information Enabling Inbound Inspection Updating SonicWALL GAV SignaturesSpecifying Protocol Filtering Enabling Outbound Smtp Inspection Configuring Client Alerts and an Exclusion ListRestricting File Transfers Configuring Client AlertsConfiguring a SonicWALL GAV Exclusion List Displaying Signatures Viewing SonicWALL GAV SignaturesEnabling SonicWALL IPS Navigating the Gateway Anti-Virus Signatures TableBrute-force Baseline Setup Enable IPS LoggingSetting Up SonicWALL Anti-Spyware Protection Enabling SonicWALL Anti-Spyware Specifying Spyware Danger Level Protection Setting Up CFS PremiumGlossary Glossary Related Documentation Solution Document Version History Version Number Date Related Documentation SonicWALL TZ 180 TotalSecure
Related manuals
Manual 34 pages 40.02 Kb Manual 38 pages 55.88 Kb
Top Page Image Contents