When should the Generic SSL offloading be deployed?

Description

When should the Generic SSL offloading be deployed?

Resolution

Generic SSL offloading is meant to be used for customer client/server applications that use SSL for security.

It is supposed to be used for custom SSL applications that require SSL offloading, that is non-HTTPS applications. 

Generic offloading should NOT be deployed for HTTP/HTTPS applications since Web Application Firewall is not supported by Generic offloading. Since there is no layer 7 analysis Generic offloading is vulnerable to various HTTP/HTTPS attack such as: HTTP 30X redirects, Cross-Site Request Forgery, Cookie Tampering etc.

Other layer 7 controls such as URL rewriting, authentication controls, load balancing are also not supported by Generic SSL offloading.

Related Articles

  • How to Provision SMA1000 in Monthly Billing (MSSP Program)
    Read More
  • SMA 1000 Series Support Matrix
    Read More
  • How to Configure SAML 2.0 SSO with Microsoft Entra ID for SonicWall SMA 1000 Series
    Read More

Categories

Secure Mobile Access
SMA 100 Series
not finding your answers?
Ask the Community
Chat