SonicWALL 5.8.1 Manuale Utente
Introduction
37
SonicOS 5.8.1 Administrator Guide
Appliances newly registered and upgraded to SonicOS 5.8.0.0 or higher will receive a 30-
day free trial license of App Visualization by default.
day free trial license of App Visualization by default.
Navigate to the Log > Flow Reporting page to manually Enable Flow Reporting and
Visualization feature. You can then view real-time application traffic on the Dashboard >
Real-Time Monitor page and application activity in other Dashboard pages for the
configured flows from the SonicWALL application signature database.
Visualization feature. You can then view real-time application traffic on the Dashboard >
Real-Time Monitor page and application activity in other Dashboard pages for the
configured flows from the SonicWALL application signature database.
If you plan to use both internal and external flow reporting, SonicWALL recommends
enabling the following (located in the Log > Flow Reporting screen) after successfully
registering and licensing your appliance to avoid multiple restarts:
enabling the following (located in the Log > Flow Reporting screen) after successfully
registering and licensing your appliance to avoid multiple restarts:
–
Report to App Flow Collector
–
Report to EXTERNAL Flow Collector
•
Application Intelligence + Control - This feature has two components for more network
security:
security:
–
Identification: Identify applications and track user network behaviors in real-time.
–
Control: Allow/deny application and user traffic based on bandwidth limiting policies.
Administrators can now more easily create network policy object-based control rules to
filter network traffic flows based on:
filter network traffic flows based on:
–
Blocking signature-matching Applications, which are notoriously dangerous and
difficult to enforce
difficult to enforce
–
Viewing the real-time network activity of trusted Users and User Groups and guest
services
services
–
Matching Content-rated categories
Network security administrators now have application-level, user-level, and content-level
real-time visibility into the traffic flowing through their networks. Administrators can take
immediate action to re-traffic engineer their networks, and quickly identify Web usage
abuse, and protect their organizations from infiltration by malware. Administrators can limit
access to bandwidth-hogging websites and applications, reserve higher priority to critical
applications and services, and prevent sensitive data from escaping the SonicWALL
secured networks.
real-time visibility into the traffic flowing through their networks. Administrators can take
immediate action to re-traffic engineer their networks, and quickly identify Web usage
abuse, and protect their organizations from infiltration by malware. Administrators can limit
access to bandwidth-hogging websites and applications, reserve higher priority to critical
applications and services, and prevent sensitive data from escaping the SonicWALL
secured networks.
SonicWALL appliances running SonicOS 5.8.0.0 or higher and already licensed for GAV/
IPS/AS, Total Secure, or Comprehensive Gateway Security Suite (CGSS) will receive a
complimentary license for Application Intelligence and Control (App Control). Note that
appliances running earlier versions of SonicOS and/or appliances not licensed for GAV/
IPS/AS, Total Secure, or CGSS will receive a 30-day free trial
IPS/AS, Total Secure, or Comprehensive Gateway Security Suite (CGSS) will receive a
complimentary license for Application Intelligence and Control (App Control). Note that
appliances running earlier versions of SonicOS and/or appliances not licensed for GAV/
IPS/AS, Total Secure, or CGSS will receive a 30-day free trial
Appliances newly registered and upgraded to SonicOS 5.8.0.0 or higher will receive a 30-
day free trial license of App Control by default.
day free trial license of App Control by default.
Select the Enable App Control option on the Firewall > App Control Advanced page to begin
using the App. Control feature.
using the App. Control feature.
To create policies using App Rules (included with the App Control license), select Enable
App Rules on the Firewall > App Rules page.
App Rules on the Firewall > App Rules page.
•
Deep Packet Inspection of SSL encrypted data (DPI-SSL) - Provides the ability to
transparently decrypt HTTPS and other SSL-based traffic, scan it for threats using
SonicWALL's Deep Packet Inspection technology, then re-encrypt (or optionally SSL-
offload) the traffic and send it to its destination if no threats or vulnerabilities are found. This
feature works for both client and server deployments. It provides additional security,
application control, and data leakage prevention functionality for analyzing encrypted
HTTPS and other SSL-based traffic. The following security services and features are
transparently decrypt HTTPS and other SSL-based traffic, scan it for threats using
SonicWALL's Deep Packet Inspection technology, then re-encrypt (or optionally SSL-
offload) the traffic and send it to its destination if no threats or vulnerabilities are found. This
feature works for both client and server deployments. It provides additional security,
application control, and data leakage prevention functionality for analyzing encrypted
HTTPS and other SSL-based traffic. The following security services and features are