Справочник Пользователя для SonicWALL 5.8.1
Introduction
43
SonicOS 5.8.1 Administrator Guide
–
Fully Customizable Block Page - The web page that is displayed when a user
attempts to access a blocked site can now be fully customized. This enables
organizations to brand the block page and display any organization-specific
information.
attempts to access a blocked site can now be fully customized. This enables
organizations to brand the block page and display any organization-specific
information.
–
Safe Search Enforcement - Safe Search Enforcement allows you to force Web search
sites like Google and Yahoo that have content restriction options always to use their
strictest settings.
sites like Google and Yahoo that have content restriction options always to use their
strictest settings.
•
New Firmware Auto-Update - Firmware Auto-Update helps ensure that your SonicWALL
security appliance has the latest firmware release. This feature automatically notifies the
administrator when a new firmware release is available, and it can optionally download it
automatically.
security appliance has the latest firmware release. This feature automatically notifies the
administrator when a new firmware release is available, and it can optionally download it
automatically.
•
Outbound Inspection for Gateway Anti-Virus - The SonicWALL Gateway Anti-Virus
security service now provides outbound inspection for HTTP, FTP, and TCP traffic.
security service now provides outbound inspection for HTTP, FTP, and TCP traffic.
•
SonicPoint 802.11n Support - SonicOS Enhanced 5.2 supports the new SonicPoint-N,
which provides next-generation 802.11n wireless network connectivity.
which provides next-generation 802.11n wireless network connectivity.
•
SonicWALL SSL VPN NetExtender Support - SonicOS Enhanced 5.2 provides support
for SonicWALL's SSL VPN NetExtender, which was previously available only on the
SonicWALL SSL VPN platforms. SonicWALL NetExtender is a transparent software
application for users that enables remote users to securely connect to the remote network.
for SonicWALL's SSL VPN NetExtender, which was previously available only on the
SonicWALL SSL VPN platforms. SonicWALL NetExtender is a transparent software
application for users that enables remote users to securely connect to the remote network.
•
Support Services Page - The new Support Services page displays a summary of the
current status of support services for the SonicWALL security appliance. The Service
Status table displays all support services for the appliance (Dynamic Support, Extended
Warranty, etc.), their current status, and their expiration date.
current status of support services for the SonicWALL security appliance. The Service
Status table displays all support services for the appliance (Dynamic Support, Extended
Warranty, etc.), their current status, and their expiration date.
Key Features in SonicOS Enhanced 5.1
SonicOS Enhanced 5.1 and higher releases include the following key features:
•
Strong SSL and TLS Encryption - The internal SonicWALL Web server now only supports
SSL version 3.0 and TLS with strong ciphers (128-bits or greater) when negotiating HTTPS
management sessions. SSL implementations prior to version 3.0 and weak ciphers
(symmetric ciphers less than 128-bits) are not supported. This heightened level of HTTPS
security protects against potential SSLv2 rollback vulnerabilities and ensures compliance
with the Payment Card Industry (PCI) and other security and risk-management standards.
SSL version 3.0 and TLS with strong ciphers (128-bits or greater) when negotiating HTTPS
management sessions. SSL implementations prior to version 3.0 and weak ciphers
(symmetric ciphers less than 128-bits) are not supported. This heightened level of HTTPS
security protects against potential SSLv2 rollback vulnerabilities and ensures compliance
with the Payment Card Industry (PCI) and other security and risk-management standards.
Tip
By default, Mozilla Firefox 2.0 and Microsoft Internet Explorer 7.0 enable SSL 3.0 and TLS,
and disable SSL 2.0. SonicWALL recommends using these most recent Web browser
releases. If you are using a previous release of these browsers, you should enable SSL 3.0
and TLS and disable SSL 2.0. In Internet Explorer, go to Tools > Internet Options, click on
the Advanced tab, and scroll to the bottom of the Settings menu. In Firefox, go to Tools >
Options, click on the Advanced tab, and then click on the Encryption tab.
and disable SSL 2.0. SonicWALL recommends using these most recent Web browser
releases. If you are using a previous release of these browsers, you should enable SSL 3.0
and TLS and disable SSL 2.0. In Internet Explorer, go to Tools > Internet Options, click on
the Advanced tab, and scroll to the bottom of the Settings menu. In Firefox, go to Tools >
Options, click on the Advanced tab, and then click on the Encryption tab.
•
Single Sign-On User Authentication - Single Sign-On User Authentication provides
privileged access to multiple network resources with a single workstation login. Single Sign-
On uses the SonicWALL SSO Agent to identify user activity based on workstation IP
addresses. Access to resources is based on policy for the group to which the user belongs.
privileged access to multiple network resources with a single workstation login. Single Sign-
On uses the SonicWALL SSO Agent to identify user activity based on workstation IP
addresses. Access to resources is based on policy for the group to which the user belongs.
•
Stateful High Availability - Stateful High Availability provides improved failover
performance. With Stateful High Availability, the primary and backup security appliances
are continuously synchronized so that the backup can seamlessly assume all network
responsibilities if the primary appliance fails, with no interruptions to existing network
performance. With Stateful High Availability, the primary and backup security appliances
are continuously synchronized so that the backup can seamlessly assume all network
responsibilities if the primary appliance fails, with no interruptions to existing network