Справочник Пользователя для SonicWALL 5.8.1
799
SonicOS 5.8.1 Administrator Guide
CHAPTER 57
Chapter 57:
Configuring Server DPI-SSL Settings
DPI-SSL > Server SSL
This chapter contains the following sections:
•
•
DPI-SSL Overview
Deep Packet Inspection of Secure Socket Layer (DPI-SSL) extends SonicWALL’s Deep Packet
Inspection technology to allow for the inspection of encrypted HTTPS traffic and other SSL-
based traffic. The SSL traffic is decrypted transparently, scanned for threats and then re-
encrypted and sent along to its destination if no threats or vulnerabilities are found. DPI-SSL
provides additional security, application control, and data leakage prevention for analyzing
encrypted HTTPS and other SSL-based traffic.
Inspection technology to allow for the inspection of encrypted HTTPS traffic and other SSL-
based traffic. The SSL traffic is decrypted transparently, scanned for threats and then re-
encrypted and sent along to its destination if no threats or vulnerabilities are found. DPI-SSL
provides additional security, application control, and data leakage prevention for analyzing
encrypted HTTPS and other SSL-based traffic.
The following security services and features are capable of utilizing DPI-SSL:
•
Gateway Anti-Virus
•
Gateway Anti-Spyware
•
Intrusion Prevention
•
Content Filtering
•
Application Firewall
•
Packet Capture
•
Packet Mirror
DPI-SSL has two main deployment scenarios:
•
Client DPI-SSL: Used to inspect HTTPS traffic when clients on the SonicWALL security
appliance’s LAN access content located on the WAN.
appliance’s LAN access content located on the WAN.
•
Server DPI-SSL: Used to inspect HTTPS traffic when remote clients connect over the WAN
to access content located on the SonicWALL security appliance’s LAN.
to access content located on the SonicWALL security appliance’s LAN.