Latest News

http://en.community.dell.com/techcenter/security/n...

We have today launched the latest promotion - the Gen4/Gen5 Secure Upgrade Program. This is for existing customers with older SonicWALL firewall appliances wishing to move to the current TZ400, TZ500 or TZ600 model.

These special models include:

1. The latest generation SonicWALL firewall hardware appliance
2. A 1 Year subscription to the Comprehensive Gateway Security Suite (CGSS)

CGSS incorporates: Gateway Anti-Virus/Anti-Spyware, Intrusion Prevention Service, Content (URL) Filtering, Application Visibility & Control, BOTNET Control, DPI-SSL Support, GEO IP Support, advance replacement hardare, telephone/web support, software/firmware updates.

See here for more details

We are very excited to share with you the SonicOS 6.2.5 release for our 6^th generation Dell SonicWALL TZ, NSA and SuperMassive Next-Generation firewalls. SonicOS 6.2.5 brings many new features that span across SMB, distributed enterprise and high-end deployments. Further, SonicOS 6.2.5 simplifies support for Dell Security partners by offering a single software platform for majority of the 6^th generation Dell SonicWALL firewalls.

Highlights of SonicOS 6.2.5

• SMB and distributed enterprises are challenged by the diverse management solutions involved in managing the security, switching and wireless access points for their network infrastructure. With the new Dell X-Series switch integration feature, SonicOS 6.2.5 delivers a consolidated management of all network infrastructure including TZ firewalls, X-Series switches, SonicPoints and WAN Acceleration devices from within the TZ Series firewalls.
• Recently published 2016 Dell Security Annual Threat Report highlighted the surge in encrypted traffic as one of the major trends observed in 2016. With the need to address effective TLS/SSL inspection, multiple DPI SSL Enhancementshave been added to the new SonicOS 6.2.5 release. Few of these key enhancements include but not limited to –
  • CFS category-based exclusion/inclusion of encrypted connections for efficient standards compliance (PCI, HIPPA)
  • Strengthened Encryption Methods (TLS 1.2, SHA256)
  • Increased default Certificate Authority (CA) database
  • Improved troubleshooting for encrypted connection failures with one-click exclude
  • Finer granularity for encrypted connection exclusions based on alternate domain names (excluding youtube.com vs. *.google.com)
  • Refreshed GUI for easy-to-use configuration of encrypted connection processing
  • Increased SSL Connection counts for NSA and SM Series firewalls
  • Unified Capabilities (UC) Approved Product List (APL) enhancements – Dell SonicWALL firewalls are now qualified for use by Department of Defense (DoD) agencies in the United States. Multiple enhancements including addition of new administrator roles, Out-of-band management, enhanced audit logging and IPv6 features were added to support UC APL certification that is now available for all customers running SonicOS 6.2.5.
  • Firewall Sandwich support and Wire mode VLAN translation features provide flexible and scalable solutions for datacenter deployments
  • Gateway Anti-Virus Detection Only Mode to support deployments where traffic containing viruses are logged but not blocked.
  • Flexible DPI actions for administrators to exclude/include traffic by protocols/DPI service/Application rule action.
  • Botnet Source identification in AppFlow Monitor to quickly view the individual user of IP address associated with the detected applications.
  • Wireless DFS Certification for FCC U-NII (Unlicensed-National Information Infrastructure) to ensure compliance for all customer Dell SonicWALL wireless appliances (SonicPoint ACe/ACi/N2)

This is exactly what our partners and customers are asking for. Our partners are active in the SonicOS 6.2.5 beta and are looking forward to all of these rich features to provide even greater security to their customers.

“We are excited about the SonicOS 6.2.5 release because it delivers the ability to control the most crucial elements of your network from a single pane of glass. Customers can now manage the Internet Security Appliance, Secure Wireless Network, and Network Switching from a single console. This is great news for customers and IT administrators, as it simplifies administration and support. This is a big gain for distributed enterprise as well, as this release also allows each of these components to be controlled from the SonicWALL Global Management System. Western NRG is excited to have this functionality available in our own GMS instance, where we support hundreds of our customers' Dell SonicWALL’s,” said Tim Martinez, CEO of Western NRG, a premier Dell SonicWALL Partner.

With the SonicOS 6.2.5 release we have made huge strides to make the life of a security officer easier to do more with less and reduce the complexity of network management. All of the important enhancements of this release are available at no additional cost to customers with valid support contracts for Dell SonicWALL Next-Generation Firewalls or Unified Threat Management appliances. SonicOS 6.2.5 firmware is available as an Early Availability release onwww.mysonicwall.comfor customers with a valid support contract.

SonicOS 6.2.5 is available on the following platforms:

- SOHO W, TZ300, TZ300 W, TZ400, TZ400 W, TZ500, TZ500 W, TZ600

- NSA 2600, NSA 3600, NSA 4600, NSA 5600, NSA 6600

- SuperMassive SM 9200, SM 9400, SM 9600

Multi-engine advanced threat analysis

SonicWALL Capture extends firewall threat protection to detect and prevent zero-day attacks. The firewall inspects traffic and detects and blocks known malware and intrusions. Suspicious files are sent to the SonicWALL Capture cloud service for analysis. The multi-engine sandbox platform includes virtualized sandboxing, full system emulation, and hypervisor-level analysis technology. It executes suspicious code and analyzes behavior, thus providing comprehensive visibility to malicious activity, while resisting evasion tactics and maximizing zero-day threat detection.

Broad file type analysis and no file size limitation

SonicWALL Capture supports analysis of files of any size and for a broad range of file types, including executable programs (PE), DLL, PDFs, MS Office documents, archives, JAR, and APK. Plus, it supports multiple operating systems, including Windows, Android, and Mac OSX environments. Administrators can customize protection by selecting or excluding files to be sent to the cloud for analysis, including by file type, file size, sender, recipient and protocol. In addition, administrators can manually submit files to the cloud service for analysis.

Block until verdict

To prevent potentially malicious files from entering the network, files sent to the cloud for analysis can be held at the gateway until a verdict is determined.

Rapid deployment of remediation signatures

When a file is identified as malicious, a signature is immediately deployed to firewalls with SonicWALL Capture subscriptions to prevent follow-on attacks. In addition, the malware is submitted to the Dell SonicWALL threat intelligence team for further analysis and inclusion of threat information into the Global Response Intelligent Defense Network (GRID) Gateway Anti-Virus and IPS signature databases and the URL, IP and domain reputation databases within 48 hours.

Reporting and alerts

SonicWALL Capture provides an at-a-glance dashboard and reports that detail the analysis results for files sent to the service, including session information, OS information, OS activity, and network activity. Firewall log alerts provide notification of suspicious files sent to the SonicWALL Capture service for analysis and results.

View the datasheet

Dell SonicWALL have made a significant change to the number of supported SonicPoints on the SOHO and TZ300 models. Initially, both of these devices would support 16 SonicPoints but have now be amended to support 2 & 8 respectively. In the case of the SOHO this appears to be from firmware 5.9.1.4. If running 5.9.1.3 and below you can still run up to 16 SonicPoints.

https://support.software.dell.com/kb/sw13469

Historically, SonicWALL SonicPoints were only manageable via Layer 2 (broadcast) meaning sites with multiple subnets separated by a router would need their own local SonicWALL UTM appliance to control them. Few people realise that you can actually control them centrally by a single SonicWALL UTM appliance and deploy the SonicPoints in Layer 3. This can reduce the amount of appliances and configuration and give wireless central internet access, and corporate access from remote locations.

It works by the SonicPoints connecting to the remote UTM appliance using a special Wireless LAN GRE Tunnel configured on each local SonicPoint by use of a console cable and browser access to the SonicPoint GUI.

For additional security when connecting over a public network you can also add a SSLVPN connection for the GRE Tunnel.

Example:
A typical example would be for a company with a number of remote branches connected by a private MPLS network so use their central SonicWALL UTM gateway security appliance to manage a remote network of SonicPoint wireless devices to give branch wireless access to corporate, public or guest users (or all 3). The benefit of a single security gateway reduces management and configuration as well hardware costs and ongoing subscription costs.

Contact us for details.

Dynamic Support 8x5 has been renamed to Standard Support, and Dynamic Support 24x7 is now 24x7 Support.

For full details please see https://support.software.dell.com/essentials/sonicwall-support-offerings

SonicWALL now have a facility to help convert your old non-SonicWALL firewall configuration file so it can be imported into a SonicWALL firewall. Users of Cisco PIX/ASA, Checkpoint, Juniper, Palo Alto, Fortinet and Watchguard are covered by this facility.

Supported Platforms
Cisco PIX/ASA: PIX 4.x, PIX 5.x, PIX 6.x, PIX 7.x, PIX 8.x
Checkpoint: Smart Center, Provider-1 (excluding VPN-1 Edge, Safe@Office, SMP) with OS NG FP1 (4.0)
Juniper: NetScreen Series, SRX Series, SSG Series
Palo Alto: PA-200, PA-500, PA-2000, PA-3000, PA-4000, PA-5000 Series
Fortinet: FortiGate Firewall Platform
Watchguard: FireBox, XTM Series

For more details see https://www.mysonicwall.com/user/prefsconverter.aspx

An often asked question, and although configuration files can be moved from appliance to appliance SonicWALL have produced a list of what is supported at https://support.software.dell.com/kb/sw6974

Combinations that are shown as not supported may still work but not all features will be restored, and in some cases you may find some corruption of objects.

Dell SonicWALL Email Security 8.2 includes multiple anti-virus technologies, including Dell SonicWALL Global Response Intelligent Defense (GRID) Anti-Virus, Dell SonicWALL Time Zero, and premium anti-virus technologies, including McAfee, Kaspersky and now, Cyren Anti-Virus.

Discover how to accelerate network performance, upgrade your security and boost employee productivity — all without introducing latency.

Explore this helpful e-book to see how Dell SonicWALL solutions seamlessly work together to consolidate core next-gen firewall application intelligence, control and visualization, gateway protection and SSL inspection along with WAN acceleration to help you achieve those goals. Simply and reliably.

The e-book addresses data compression, protocol optimization, Windows File Share acceleration, data deduplication, application blocking and other important issues that can make a major impact on your network’s performance.