- Products
- Network Security
Next Generation FirewallNext-generation firewall for SMB, Enterprise, and Government
Security ServicesComprehensive security for your network security solution
Network Security ManagerModern Security Management for today’s security landscape
- Advanced Threat Protection
Capture ATPMulti-engine advanced threat detection
Capture Security applianceAdvanced Threat Protection for modern threat landscape
- Access Security
Cloud Edge Secure AccessDeploy Zero-Trust Security in minutes
Secure Mobile AccessRemote, best-in-class, secure access
Wireless Access PointsEasy to manage, fast and secure Wi-FI
SwitchesHigh-speed network switching for business connectivity
- Email Security
Email SecurityProtect against today’s advanced email threats
- Cloud Security
Cloud App SecurityVisibility and security for Cloud Apps
Cloud Firewall (NSv)Next-generation firewall capabilities in the cloud
- Endpoint Security
Capture ClientStop advanced threats and rollback the damage caused by malware
Content Filtering ClientControl access to unwanted and unsecure web content
- Product Widgets
- Product Menu Right Image
- Network Security
- Solutions
- Solutions Widgets
- Solutions Image Widgets
- Solutions Widgets
- Partners
- Partner Widgets
- Partners Image Widgets
- Partner Widgets
- Support
- Support Widget
- Support Image Widgets
- Support Widget
- Products
- Network Security
- Next Generation FirewallNext-generation firewall for SMB, Enterprise, and Government
- Security ServicesComprehensive security for your network security solution
- Network Security ManagerModern Security Management for today’s security landscape
- Advanced Threat Protection
- Capture ATPMulti-engine advanced threat detection
- Capture Security applianceAdvanced Threat Protection for modern threat landscape
- Access Security
- Cloud Edge Secure AccessDeploy Zero-Trust Security in minutes
- Secure Mobile AccessRemote, best-in-class, secure access
- Wireless Access PointsEasy to manage, fast and secure Wi-FI
- SwitchesHigh-speed network switching for business connectivity
- Email Security
- Email SecurityProtect against today’s advanced email threats
- Cloud Security
- Cloud App SecurityVisibility and security for Cloud Apps
- Cloud Firewall (NSv)Next-generation firewall capabilities in the cloud
- Endpoint Security
- Capture ClientStop advanced threats and rollback the damage caused by malware
- Content Filtering ClientControl access to unwanted and unsecure web content
- Product Widgets
- Product Menu Right Image
- Network Security
- Solutions
- Solutions Widgets
- Solutions Image Widgets
- Solutions Widgets
- Partners
- Partner Widgets
- Partners Image Widgets
- Partner Widgets
- Support
- Support Widget
- Support Image Widgets
- Support Widget
SMB SSL-VPN: What features does SonicWall's Web Application Firewall support? (FAQ)
03/26/2020 
5 People found this article helpful
43,023 Views
Description
SMB SSL-VPN: What features does SonicWall's Web Application Firewall support? (FAQ)
Resolution
Frequently Asked Question:
What features does SonicWall's Web Application Firewall support?
Security Features
- Protects against OWASP Top Ten vulnerabilities that includes protection from XSS, SQL Injection, and CSRF
- Has Anti-evasive capability to catch threats within encoded and compressed input data because it normalizes the input from user before matching against signatures
- Inspects SSL encrypted packets
- Can provide strong authentication including Two factor authentication, One time passwords and Client-certificate authentication for Web applications
- Inspects POST payload from user and response payload from Web server
- Provides fine-grained access control based on various URL components like host, port and path.
- Provides real-time protection with dynamic signature updates
- Delivers Web applications to remote users securely by acting as an SSL Offloader
Acceleration features
- Performs SSL hardware acceleration
- Performs Content Caching for static content and SSL Session Caching
- Performs GZIP compression, which significantly reduces bandwidth usage for remote users
- Enables Connection Persistence and Connection Multiplexing with the backend
- Supports Transfer-Chunk encoding needed to deliver large dynamic content
Note: These features optimize the data exchange between the client and the WAF even if backend Web servers do not support these features.
Administrative Features
- Ability to configure global exclusions and exclusions based on signature, host and URL path.
- Ability to enable or disable features based on severity (high, medium and low)
- Built-in false positive detection system weeds out stale signatures and signatures with high false positive rate
- Provides description of various threats and detailed information on prevalence, severity and remedial measures.
- Ability to turn on and off auto-updates for signatures
Reporting
- Reports incidence statistics
- Event logging
- GMS and Viewpoint Support
Related Articles
- How to secure Virtual Office portal from all external access
- NetExtender users fail to get connected throwing an Error Failed to get vpn protocol on firmware 10.2.1.2 or above due to misconfigured protocol
- Is SRA/SMA appliance vulnerable to CVE-2016-2183 and CVE-2016-5915?
YES
NO