Best practices for administrator managing SonicWall Firewall Appliances

09/13/2021 53 6573

DESCRIPTION:

Network Administrators and Engineers can suggest these below practices for users and administrators who are managing SonicWall firewall appliances, to increases the overall security of an end-to end architecture.

RESOLUTION:

To ensure the SonicWall appliances and the customer's network are always secured and updated. Firewall administrators performing below steps will ensure that the device is performing at the best and they are aware of changes and also save them accordingly.

Ensure to follow the steps listed below:

1.  Update your SonicOS firmware to the current latest version to get current features and functions (for normal requirements use current General Release). Review the SonicOS Administrator Guide and the Release note for the latest information.
   For help with the firmware upgrade, please follow: How Can I upgrade SonicOS Firmware?
   
   
2. Take a backup of the configuration on a timely basis before making changes to the existing settings on SonicWall to recover the settings of the firewall in critical situations. Create and save system export (EXP) files and a Tech Support Report (TSR) at each critical stage (before and after any change). Document and label each backup, this will help you to roll back to a good known state. 
   For help with exporting settings, please follow:    https://www.sonicwall.com/support/knowledge-base/how-can-i-save-a-backup-settings-file-from-a-sonicwall-firewall/170504841802992/                                                                                                                                              
   
    With 6.5 & above firmware, SonicWall has the option to create Cloud Backup of settings exp files. Maximum 3 configuration backups are supported per firmware version.      For help with cloud back up of settings, please follow:   How can I create cloud backup of SonicWall settings?                                                                                                                                                                                                                                                                                                                                                                                                                     
3. Use strong passwords and change often. Limit Administration access to only where it is really needed. Limit who, where, when admin access is granted. Log all admin access will make it easy to audit.  For help with audit logging, please follow:  How can I enable Enhanced Audit Logging Support?