SonicWALL TZ 180 manual What is a Zone?, Benefits

Page 12

SonicWALL Intrusion Prevention Service

What is a Zone?

A Zone is a logical grouping of one or more interfaces and/or VLANs designed to make management, such as the definition and application of Access Rules, a simpler and more intuitive process than following strict physical interface scheme. Zone-based security is a powerful and flexible method of managing both internal and external network segments, allowing the administrator to separate and protect critical internal network resources from unapproved access or attack.

A network security zone is simply a logical method of grouping one or more interfaces with friendly, user-configurable names, and applying security rules as traffic passes from one zone to another zone. Network security zones provide an additional, more flexible, layer of security for the firewall. With the zone-based security, the administrator can group similar interfaces and apply the same policies to them, instead of having to write the same policy for each interface.

Benefits

The extensible signature language used in SonicWALL’s Deep Packet Inspection engine also provides proactive defense against newly discovered application and protocol vulnerabilities. SonicWALL IPS offloads the costly and time-consuming burden of maintaining and updating signatures for new hacker attacks through SonicWALL’s industry-leading Distributed Enforcement Architecture (DEA). Signature granularity allows SonicWALL IPS to detect and prevent attacks based on a global, attack group, or per-signature basis to provide maximum flexibility and control false positives.

Alternatively, SonicWALL Global Management System (SonicWALL GMS) provides global management capabilities that enabled administrators to manage SonicWALL IPS across multiple SonicWALL security appliances from a central location. SonicWALL GMS and SonicWALL ViewPoint solutions allow administrators to create detailed reports based on attack source, destination and type of intrusion, such as “Top Intrusions,” “Destinations Over Time” and “Intrusions Over Time.”

Note Please visit <http://www.sonicwall.com> for more information on SonicWALL GMS and SonicWALL ViewPoint.

Note Refer to the SonicWALL Gateway Anti-Virus Administrator’s Guide for information you need to successfully activate, configure, and administer SonicWALL Gateway Anti-Virus on a SonicWALL security appliance, located on the SonicWALL Web site: <http://www.sonicwall.com/services/documentation.html>.

12 SonicWALL TZ 180 TotalSecure

Page 11 Page 13
Image 12
Page 11 Page 13
Contents What is TotalSecure? IntroductionDocument Scope Every SonicWALL TotalSecure solution includes the following Benefits of TotalSecureSonicWALL Gateway Anti-Virus GAV OverviewHow Does GAV Work? BenefitsSonicWALL Gateway Anti-Virus/Intrusion Prevention Features SonicWALL GAV Multi-Layered Approach Remote Site Protection Internal Network ProtectionHttp File Downloads SonicWALL GAV Architecture Server ProtectionDisabling the SonicWALL GAV/IPS Engine Protocol HandlingSmtp SonicWALL Intrusion Prevention Service IPS OverviewHow Does IPS Work? What is a Zone? SonicWALL Anti-Spyware Security Service SonicWALL Anti-SpywareSpyware Threat SonicWALL Anti-Spyware SonicWALL Content Filtering Service Premium CFS OverviewHow Does CFS Premium Work? SonicWALL Deep Packet Inspection DPI OverviewHow Does DPI Work? Deep Packet Inspection Flow Diagram SonicWALL Security Dashboard Security Dashboard Overview SonicWALL Security Dashboard What is Security Dashboard? How Does the Security Dashboard Work?Registering Your Appliance on MySonicWALL Registering Your Appliance on MySonicWALL TotalSecure Configuration Task List Registering Your SonicWALL Security ApplianceSetting Up SonicWALL GAV Protection Enabling SonicWALL GAVApplying SonicWALL GAV Protection on Interfaces Applying SonicWALL GAV Protection on Zones SonicOS Enhanced Edit ZoneViewing SonicWALL GAV Status Information Updating SonicWALL GAV Signatures Specifying Protocol FilteringEnabling Inbound Inspection Configuring Client Alerts and an Exclusion List Enabling Outbound Smtp InspectionConfiguring Client Alerts Configuring a SonicWALL GAV Exclusion ListRestricting File Transfers Viewing SonicWALL GAV Signatures Displaying SignaturesNavigating the Gateway Anti-Virus Signatures Table Enabling SonicWALL IPSEnable IPS Logging Brute-force Baseline SetupSetting Up SonicWALL Anti-Spyware Protection Enabling SonicWALL Anti-Spyware Setting Up CFS Premium GlossarySpecifying Spyware Danger Level Protection Glossary Related Documentation Solution Document Version History Version Number Date Related Documentation SonicWALL TZ 180 TotalSecure
Related manuals
Manual 34 pages 40.02 Kb Manual 38 pages 55.88 Kb
Top Page Image Contents