Enforced Client Product Guide

Using the Firewall Protection Service

 

Configuring policies for firewall protection

5

2A list of safe applications that SonicWALL maintains on the www.hackerwatch.org website. By default, the firewall protection service allows applications that appear on this list. If the administrator does not want the firewall protection service to consult this list, he can configure a policy option (see Specify whether to use SonicWALL recommendations).

3A computer-specific list of allowed Internet applications created by user responses to detection prompts. Users are prompted for a response to application detections when their policy is configured for Prompt mode (see Select a firewall protection mode on page 115).

Specify Internet applications in a policy

When you authorize Internet applications in a policy, the firewall protection service allows the applications to connect to the Internet whenever they run on computers using the policy.

Authorize only applications you know are safe. If you are unsure an application is safe, we recommend not adding it to the allowed Internet applications list.

To configure allowed Internet applications in a policy:

1On the Groups + Policies page, click Add Policy (or click Edit to modify an existing policy).

2Click the Desktop Firewall tab.

3Under Allowed Internet Applications, select the type of application (a detected application or a user-approved application).

4Select an application, then click Save.

The selected application is added to the list of allowed programs for computers using this policy. (No list appears until you have added at least one allowed application to the policy.)

To remove an allowed Internet application from a policy:

1On the Groups + Policies page, click Add Policy (or click Edit to modify an existing policy).

2Click the Desktop Firewall tab.

3In the list of Allowed Internet Applications, click remove for each application you want to delete from the list, then click Save.

Specify whether to use SonicWALL recommendations

SonicWALL maintains a whitelist of Internet applications it has determined to be safe at the www.hackerwatch.org website. By default, the firewall protection service checks this website whenever it detects an Internet application that the administrator has not specified as an approved Internet application. You can change the setting of this option in a policy.

To ignore SonicWALL recommendations for Internet applications:

1On the Groups + Policies page, click Add Policy (or click Edit to modify an existing policy).

2Click the Desktop Firewall tab, deselect the Use Smart Recommendations to automatically approve common Internet applications checkbox, then click Save.

121

Page 121
Image 121
SonicWALL 4.5 manual Specify Internet applications in a policy, Specify whether to use SonicWALL recommendations, 121

4.5 specifications

SonicWALL 4.5 is a robust network security solution designed to address the evolving challenges in threat protection and data security. This release brings a suite of advanced features, cutting-edge technologies, and characteristics tailored to enhance system performance and resilience against cyber threats.

One of the highlight features of SonicWALL 4.5 is its Integrated Intrusion Prevention System (IPS). This system provides real-time threat detection and response by monitoring network traffic for potential vulnerabilities and malicious activities. With continuously updated signature-based detection, it ensures that organizations are protected against the latest exploits and attack vectors.

Another key component is the Next-Generation Firewall (NGFW) capabilities, which combine traditional firewall functions with advanced features such as application awareness, user identity control, and content filtering. The NGFW allows organizations to enforce detailed policies based on user roles, thereby enhancing the security posture while maintaining user productivity.

SonicWALL 4.5 also incorporates advanced malware protection through its Capture Advanced Threat Protection (ATP) service. This multi-engine sandboxing technology analyzes suspicious files and URLs in a secure environment, providing organizations with in-depth insights into potential threats before they reach the network.

Furthermore, the solution includes enhancements to Secure Mobile Access, enabling secure remote connections while ensuring that sensitive data remains protected. With features like SSL VPN, SonicWALL 4.5 allows users to securely access private networks from anywhere while maintaining compliance with data protection regulations.

In terms of management, SonicWALL 4.5 introduces an intuitive interface for centralized management, enabling IT administrators to configure and monitor multiple devices effortlessly. The reporting and logging capabilities are enhanced, providing detailed insights into network activity, which is crucial for compliance and forensic analysis.

SonicWALL 4.5 also prioritizes user experience and performance with its optimized hardware, ensuring faster processing speeds and reduced latency. Features like high availability and load balancing further enhance system reliability.

In summary, SonicWALL 4.5 stands out with its integrated IPS, NGFW capabilities, advanced malware protection through Capture ATP, secure mobile access, intuitive management interface, and optimized performance. This comprehensive suite of features positions SonicWALL 4.5 as a formidable player in the realm of network security, making it an appealing choice for organizations seeking robust protection against an ever-evolving threat landscape.