SonicWALL 232-000861-00 Key Features in SonicWALL Scrutinizer 9.0

SonicWALL Scrutinizer 9.0.1 Release Notes

P/N 232-000861-00 Rev A

Key Features in SonicWALL Scrutinizer 9.0

• Enhanced Notifications and Facilitation of Automatic Remediation: In version 8.6 and earlier versions,

Scrutinizer only sent syslogs. Version 9 adds the ability t o s end notification s and escalate issu es. If the first

person notified doesn’t clear t h e alarm within a g iven time period, a s econd person, th ird person, and s o on can

be notified via em ail, pager, an d other options l i sted below.

Notifications can be sent when alar m s are triggered based upon spec i fic SonicWALL firewall security related

events.

New notification options include:

1. Email notification s about network act ivity can be s ent to administ rators using mob ile and other devices .

2. SNMP Traps can be trig gered allowing for greater integrat ion with existi n g notification options.

3. Syslog Messages all o w for greater rem ed iation when in t egrated with th ird party SIEM prod u cts such as

ArcSight.

4. Script execution al lows for automat ic remediation eliminating th e need for manual in tervention.

Scrutinizer n ow facilitates au tomatic remed iation based on sp ec ific events: P r eviou s versions of S crutinizer, as

do most other th ird party flow analyt i c applications , only provide m essages to the user wh en alarms are

triggered. By adding SNMP Traps & Script Execution, S crutinizer now has the potential t o r em ediate events .

For example, Son icWALL IPS sees an attack occurri ng on the LAN, an alarm in Scrutinizer i s triggered which in

turn sends an SNMP Trap to the Cisco switch to shut down the interfaced being used in the attack.

• Advanced SonicWALL VPN Reporting with granular drilldown capabilities including:

Reports are availab le for both s ite-to-site VPN connec t ions and remote us er IPSec VPN connec tions, i.e. Glob al

VPN Client connections

User Details include user n ame, authentic at ion method, and d omain for detailed r e porting on sp ecific users.

Reporting d at a can be cross referen ced with the frien dly VPN name, th e remote system’s IP address and th e

local system’s IP address.

New SonicWALL Scrutinizer VPN Report Type