- Products
- Network Security
- Threat Protection
- Secure Access Service Edge (SASE)
- Cloud Security
- Endpoint Security
- Email Security
- Secure Access
-
Wi-Fi 6 Access Points
SonicWall SonicWave 600 series access points provide always-on, always-secure connectivity for complex, multi-device environments.
Read More
- Solutions
- Industries
- Use Cases
- Solutions Widgets
- Solutions Content Widgets
Federal
Protect Federal Agencies and Networks with scalable, purpose-built cybersecurity solutions
- Solutions Image Widgets
-
- Partners
- SonicWall Partners
- Partner Resources
- Partner Widgets
- Custom HTML : Partners Content WIdgets
Partner Portal
Access to deal registration, MDF, sales and marketing tools, training and more
- Partners Image Widgets
-
- Support
- Support
- Resources
- Capture Labs
- Support Widget
- Custom HTML : Support Content WIdgets
Support Portal
Find answers to your questions by searching across our knowledge base, community, technical documentation and video tutorials
- Support Image Widgets
-
- COMPANY
- PROMOTIONS
- MANAGED SERVICES
- Contact Sales
-
- Menu
- Solutions
- Solutions Widgets
- Solutions Image Widgets
-
- Solutions Widgets
- Partners
- Partner Widgets
- Partners Image Widgets
-
- Partner Widgets
- Support
- Support Widget
- Support Image Widgets
-
- Support Widget
- Solutions
- Solutions Widgets
- Solutions Image Widgets
-
- Solutions Widgets
- Partners
- Partner Widgets
- Partners Image Widgets
-
- Partner Widgets
- Support
- Support Widget
- Support Image Widgets
-
- Support Widget
SMB SSL-VPN: What features does SonicWall's Web Application Firewall support? (FAQ)
03/26/2020 
5 People found this article helpful
195,535 Views
Description
SMB SSL-VPN: What features does SonicWall's Web Application Firewall support? (FAQ)
Resolution
Frequently Asked Question:
What features does SonicWall's Web Application Firewall support?
Security Features
- Protects against OWASP Top Ten vulnerabilities that includes protection from XSS, SQL Injection, and CSRF
- Has Anti-evasive capability to catch threats within encoded and compressed input data because it normalizes the input from user before matching against signatures
- Inspects SSL encrypted packets
- Can provide strong authentication including Two factor authentication, One time passwords and Client-certificate authentication for Web applications
- Inspects POST payload from user and response payload from Web server
- Provides fine-grained access control based on various URL components like host, port and path.
- Provides real-time protection with dynamic signature updates
- Delivers Web applications to remote users securely by acting as an SSL Offloader
Acceleration features
- Performs SSL hardware acceleration
- Performs Content Caching for static content and SSL Session Caching
- Performs GZIP compression, which significantly reduces bandwidth usage for remote users
- Enables Connection Persistence and Connection Multiplexing with the backend
- Supports Transfer-Chunk encoding needed to deliver large dynamic content
Note: These features optimize the data exchange between the client and the WAF even if backend Web servers do not support these features.
Administrative Features
- Ability to configure global exclusions and exclusions based on signature, host and URL path.
- Ability to enable or disable features based on severity (high, medium and low)
- Built-in false positive detection system weeds out stale signatures and signatures with high false positive rate
- Provides description of various threats and detailed information on prevalence, severity and remedial measures.
- Ability to turn on and off auto-updates for signatures
Reporting
- Reports incidence statistics
- Event logging
- GMS and Viewpoint Support
Related Articles
- Appliance reboot changes the configuration.
- How to secure Virtual Office portal from all external access
- Lost Admin Password Recovery for SMA500v
YES
NO