High-Performance Firewall and Enterprise Threat Prevention
Deployed on-premise or as virtual hardware, SonicWall Next-Generation Firewalls (NGFW) give organizations the impressive security and processing power they need to keep up with future generations of cyber threats without negatively impacting network performance. SonicWall’s high-speed, multi-core technology--paired with Reassembly-free Deep Packet Inspection (RFDPI) capabilities--allow organizations to quickly and accurately decrypt and validate large volumes of TLS/SSL/SSH traffic at ultra-high speeds to ensure company networks remain secure and uncompromised at all times with near zero latency.
SonicWall Next-Generation Firewall Services Overview
Gateway Anti-Virus and Anti-Malware
SonicWall NGFWs provide organizations a strong foundational layer of network security and anti-malware protection by actively scanning all inbound, outbound, and internal traffic for viruses, malware, and other malicious threats or suspicious activity in real-time. Each SonicWall firewall leverages a continuously updated database of over 20 million threat signatures to rapidly detect new and emerging threats before they can impact and/or cause damage to any network assets.
- SSL decryption and inspection
- Automated anti-virus enforcement
- Automated deployment and installation
- Always-on virus protection
- Spyware protection
Leveraging patented Reassembly-free Deep Packet Inspection technology, SonicWall NGFWs actively scan network packet payloads to discover advanced threat signatures across dozens of attack categories, including threats from internal traffic, protocol exploits or anomalies, botnet command and control (CnC) attacks, and zero-day attacks. Attack signatures are continuously researched by SonicWall Capture Labs and dynamically updated without requiring the firewall to reboot or interrupt security coverage in any way.
- Countermeasure-based protection
- Automatic signature updates
- Intra-zone IPS protection
- Botnet command and control detection and blocking
- Protocol abuse/anomaly protection
- Zero-day protection
- Anti-evasion technology
SonicWall NGFWs grant security teams granular application control capabilities that play a critical role in keeping company activity secure and productive. Network administrators have the ability to control applications, specific application features, and overall access to applications based on time of day, user groups, exclusion lists, and a variety of other factors to ensure all non-essential or malicious activity is completely restricted.
- Custom application identification
- Application bandwidth management
- Granular application control
Content Filtering Service
SonicWall’s Content Filtering Service (CFS) is a powerful web-filtering and policy enforcement solution that protects company employees from accessing malicious or inappropriate web content. Regardless of the device used to access the web, CFS compares every website an employee visits against an extensive database of URLs and IP addresses to dynamically allow, deny, or limit access depending on the company’s security policies and configurations.
- Dynamically updated rating architecture
- IP-based HTTPS content filtering
- Safe-search enforcement
- Web-based management console
- Reporting and analytics dashboard
Capture Advanced Threat Protection
Administered from the cloud, SonicWall Capture Advanced Threat Protection Service (ATP) gives organizations the ability to detect highly advanced threats and confidently block them at the gateway until a verdict is provided. SonicWall ATP quickly and simultaneously scans a variety of file types and sizes to quickly catch malicious code before additional threats can infiltrate the network.
- Multi-engine threat analysis
- Multi-layer sandboxing
- Real-time deep memory inspection (RTDMI)
- Block files until verdict
- Analysis dashboards and real-time alerts