Best practices for administrator managing SonicWall Firewall Appliances
08/27/2024 418 People found this article helpful 480,396 Views
Description
Network Administrators and Engineers can suggest these below practices for users and administrators who are managing SonicWall firewall appliances, to increases the overall security of an end-to end architecture.
Resolution
To ensure the SonicWall appliances and the customer's network are always secured and updated. Firewall administrators performing below steps will ensure that the device is performing at the best and they are aware of changes and also save them accordingly.
Ensure to follow the steps listed below:
- Update your SonicOS firmware to the current latest version to get current features and functions (for normal requirements use current General Release). Review the SonicOS Administrator Guide and the Release note for the latest information.
For help with the firmware upgrade, please follow: How Can I upgrade SonicOS Firmware?
- Take a backup of the configuration on a timely basis before making changes to the existing settings on SonicWall to recover the settings of the firewall in critical situations. Create and save system export (EXP) files and a Tech Support Report (TSR) at each critical stage (before and after any change). Document and label each backup, this will help you to roll back to a good known state.
For help with exporting settings, please follow: https://www.sonicwall.com/support/knowledge-base/how-can-i-save-a-backup-settings-file-from-a-sonicwall-firewall/170504841802992/
With 6.5 & above firmware, SonicWall has the option to create Cloud Backup of settings exp files. Maximum 3 configuration backups are supported per firmware version. For help with cloud back up of settings, please follow: How can I create cloud backup of SonicWall settings? - Use strong passwords and change often. Limit Administration access to only where it is really needed. Limit who, where, when admin access is granted. Log all admin access will make it easy to audit. For help with audit logging, please follow: How can I enable Enhanced Audit Logging Support?
- Configure 2-Factor Authentication using Google Authenticator App for Administrator login for enhanced security. For help please follow the KB :[[Configure two-factor authentication using TOTP for HTTPS Management|190201153847934]]
- It is recommended to restrict access to firewall web management. For more information, please follow:GUI: How can I enable remote management (e.g. HTTPS Management) on the SonicWall?
Related Articles
Categories
Was This Article Helpful?
YESNO