SonicOS 7.1 Security Services
Table of Contents
Enabling Inbound Inspection
By default, SonicWall Gateway Anti-Virus inspects all inbound HTTP, FTP, IMAP, SMTP and POP3 traffic. Generic TCP Stream can optionally be enabled to inspect all other TCP-based traffic, such as non-standard ports of operation for SMTP and POP3, and IM and P2P protocols.
Within the context of SonicWall Gateway Anti-Virus, the Enable Inbound Inspection protocol traffic handling refers to:
- Non-SMTP traffic initiating from a Trusted, Wireless, or Encrypted zone destined to any zone.
- Non-SMTP traffic from a Public zone destined to an Untrusted zone.
- SMTP traffic initiating from a non-Trusted zone destined to a Trusted, Wireless, Encrypted, or Public zone.
- SMTP traffic initiating from a Trusted, Wireless, or Encrypted zone destined to a Trusted, Wireless, or Encrypted zone.
| To | Trusted | Encrypted | Wireless | Public | Untrusted | |
|---|---|---|---|---|---|---|
| From | ||||||
| Trusted | ✔ | ✔ | ✔ | |||
| Encrypted | ✔ | ✔ | ✔ | |||
| Wireless | ✔ | ✔ | ✔ | |||
| Public | ✔ | ✔ | ✔ | ✔ | ✔ | |
| Untrusted | ✔ | ✔ | ✔ | ✔ | ✔ |
| To | Trusted | Encrypted | Wireless | Public | Untrusted | |
|---|---|---|---|---|---|---|
| From | ||||||
| Trusted | ✔ | ✔ | ✔ | ✔ | ✔ | |
| Encrypted | ✔ | ✔ | ✔ | ✔ | ✔ | |
| Wireless | ✔ | ✔ | ✔ | ✔ | ✔ | |
| Public | ✔ | |||||
| Untrusted |
