SonicWALL Expands Deep Packet Protection With SSL Inspection - New OS 5.6 released!

Deep Packet Inspection for SSL traffic is part of SonicWALL's latest operating system upgrade for all SonicWALL TZ, NSA and E-Class NSA firewalls.
SonicOS 5.6, among other features, brings protection from SonicWALL's powerful and revolutionary Re-Assembly Free Deep Packet Inspection (RFDPI) engine to SSL encrypted traffic. This feature works for both client and server deployments. It provides additional security, application control, and data leakage prevention functionality for analyzing encrypted HTTPS and other SSL-based traffic. The following security services and features are capable of utilizing DPI-SSL: Gateway Anti-Virus, Gateway Anti-Spyware, Intrusion Prevention, Content Filtering, Application Firewall, Packet Capture and Packet Mirror. DPI-SSL is initially available on SonicWALL NSA models 3500 and above

Make sure you support is up to date to get these benefits!

Other key features include:
3G and Modem Support – SonicOS Enhanced 5.6 supports 3G and Modem configurations for WAN Load Balancing (WLB). (3G and Modem support is available on all NSA models except the SonicWALL NSA 2400.)
• Command Line Interface Enhancements – Provides increased support through the command line interface to configure and modify Network Address Translation (NAT) Policies, Access Rules, Service Objects, and Service Groups.
• Diagnostic Improvements – Includes a diagnostic tool which automatically checks the network connectivity and service availability of several pre-defined functional areas of SonicOS. The tool also returns results and attempts to describe causes, if any exceptions are detected.
• Dynamic DNS per Interface – Provides the ability to assign a Dynamic DNS (DDNS) profile to a specific WAN interface. This allows administrators who are configuring WAN Load Balancing to advertise a predictable IP address to the DDNS service.
• Increased UTM Connection Support – Provides the ability to increase the number of simultaneous connections on which SonicWALL security appliances can apply Unified Threat Management (UTM) services (Application Firewall, Anti-Spyware, Gateway Anti-Virus, and Intrusion Prevention Service). This feature is intended for high-end (E-Class) customers who need to support a large number of concurrent connections. (Note: There is a slight performance decrease when this option is enabled.)
• FairNet for SonicPoint-N – Provides the ability to create policies that equally distribute bandwidth for all wireless users connected to a SonicPoint-N.
• MAC-IP Spoof Detection and Prevention – Provides additional protection against MAC address and IP address based spoofing attacks (such as Man-in-the-Middle attacks) through configurable Layer 2 and Layer 3 admission control.
• Packet Mirroring – Provides the ability to capture copies of specified network packets from other ports. This is commonly used for network appliances that require monitoring of network traffic, such as an intrusion detection system. Customers can now gather data from one of the other ports on a SonicWALL to look for threats and vulnerabilities and help aid with diagnostics and troubleshooting.
• Route-based VPN with Dynamic Routing Support – Extends support for advanced routing (either OSPF or RIP) to VPN networks. This simplifies complex VPN deployments by enabling dynamic routing to determine the best path that traffic should take over a VPN tunnel.
• Signature Download through a Proxy Server – Provides the ability for SonicWALL security appliances to download signatures even when they access the Internet through a proxy server. This feature also allows for registration of SonicWALL security appliances through a proxy server without compromising privacy.
• Single Sign-on for Terminal Services and Citrix – Provides support for transparent authentication of users logged in from a Terminal Services or Citrix server. This transparent authentication enables Application Firewall and CFS policy enforcement in Terminal Services and Citrix environments.
SSL VPN Enhancements – SonicOS Enhanced 5.6.0.0 provides a number of SSL VPN enhancements:
o Bookmarks for SSH and RDP – Provides support for users to create bookmarks on the SSL VPN Virtual Office to access systems using SSH, RDP, VNC, and Telnet services.
o Granular User Controls – Allows network administrators to configure different levels of policy access for NetExtender users based on user ID.
o One-Time Password – Provides additional security by requiring users to enter a randomly generated, single-use password in addition to the standard user name and password credentials.
o Separate Port and Certificate Control – Provides separate port access for SSL VPN and HTTPS management certificate control, allowing administrators to close HTTPS management while leaving SSL VPN open.
o Virtual Assist – Provides a remote assistance tool to SonicWALL security appliance users. SonicWALL Virtual Assist is a thin client remote support tool provisioned via a Web browser. It enables a technician to assume control of a customer’s PC or laptop for the purpose of providing remote technical assistance.
• Unbounded Multiple WAN Support – Provides the ability to enable any number of WAN Ethernet interfaces for WAN Load Balancing and Failover on SonicWALL TZ and NSA appliances.
• Virtual Access Points for SonicWALL TZ Wireless Platforms – The SonicWALL TZ 100W, TZ 200W and TZ 210W platforms now support Virtual Access Points (VAPs). VAPs enable users to segment different wireless groups by creating logical segmentation on a single wireless radio.
• VPN Policy Bound to VLAN Interface – Allows users to bind a VPN policy to a VLAN interface when configuring a site-to-site VPN.
• WebCFS Server Failover – Provides the ability to enable WebCFS server failover, allowing a SonicWALL security appliance to contact another server for URL rating information if the local server is unavailable. This ensures performance continuity for Web navigation and Web content filtering functionality.
• Wireless Bridging for SonicWALL TZ Wireless Platforms – The SonicWALL TZ 100W, TZ 200W and TZ 210W platforms now support Wireless Bridging, which provides the ability to extend a single wireless network across multiple SonicWALL wireless security appliances.

DON'T MISS OUT - Make sure you support is up to date to get these benefits!