Firewall > SSL Control
503
SonicOS Enhanced 4.0 Administrator Guide
To configure the Whitelist and Blacklist, click the Configure button to bring up the following
window.
Entries can be added, edited and deleted with the buttons beneath each list window.
Note List matching will be based on the subject common name in the certificate presented in the
SSL exchange, not in the URL (resource) requested by the client.
Changes to any of the SSL Control settings will not affect currently established connections;
only new SSL exchanges that occur following the change commit will be inspected and
affected.
Enabling SSL Control on Zones
Once SSL Control has been globally enabled, and the desired options have been configured,
SSL Control must be enabled on one or more zones. When SSL Control is enabled on the zone,
the SonicWALL looks for Client Hellos sent from clients on that zone through the SonicWALL
will trigger inspection. The SonicWALL then looks for the Server Hello and Certificate that is