Click on the image to Zoom In

Every year, viruses become more sophisticated, and today have the ability to circle the entire globe in a matter of minutes. Many viral threats are blended, operating at multiple layers, and bypassing traditional client-based solutions. Viruses can come from multiple sources over many different protocols. SonicWALL Gateway Anti-Virus features a deep packet inspection engine that inspects all e-mail, Web, file transfer, and other stream-based protocols, as well as IM and P2P applications for total virus control.

And what's worse is that the nature of viral attacks has changed—today's attacks are much more dangerous and costly than ever before. SonicWALL analyzes files in real time, and includes proactive alerts that notify administrators whenever a threat is detected. SonicWALL can even inspect unlimited sized and compressed files. Virus-ridden files that are large or have been compressed slip through other solutions, presenting an enormous risk. Day-zero attacks are also prevented with SonicWALL's dynamically-updated databases and extensive list of virus and malware signatures.

Spyware is more than just hidden software that serves ads—it’s the cause of half of all operating system crashes, and a quarter of all support calls. Spyware can work behind the scenes, secretly gathering information such as browsing habits, data entered into forms, and even individual keystrokes, and send it all to an unknown host that can use that information for account theft and other crimes. Because spyware can come in so many different forms, and through everything from IM, P2P, and file sharing, to games and harmless-looking utility programs, it requires a distinct approach from standard anti-virus technology.

SonicWALL's anti-spyware technology blocks spyware at the gateway, preventing users from downloading spyware in the first place. In addition, it prevents auto-installation of ActiveX components, one of the most common sources of spyware; and stops any existing spyware programs from communicating with their hosts.

Many of the most dangerous threats function at the application layer, and exploit vulnerabilities in common network applications to drain your productivity and steal your data. Application-layer threats defy old-guard technology—but SonicWALL goes a step beyond by scanning for worms, Trojans, software vulnerabilities, backdoor exploits, and other types of malicious attacks.

Working in conjunction with anti-virus and anti-spyware technology, SonicWALL's powerful intrusion prevention engine protects against many different network-based application layer threats, and is unique in the ability to accommodate unlimited file sizes, and hundreds of thousands of concurrent downloads. You can also restrict access to applications that commonly function as conduits of malware, such as IM and P2P.

Today's sophisticated threats call for a multi-layered approach to protection that starts right at the security gateway. Threats are unpredictable and constantly changing, and while client-based protection is essential, it’s not enough. SonicWALL Gateway Anti-Virus, Anti-Spyware and Intrusion Prevention provides the first layer of dynamic security, protecting against external attacks as well as attacks that originate from within your own network.

When employees, students, or other users are allowed to access Web sites that are inappropriate or offensive, there are multiple risks that you are taking. First, there is a legal responsibility and obligation to keep the workplace free from offensive material, and not taking steps to do so could lead to costly lawsuits. Second, unrestricted access drains productivity by promoting wasteful Web surfing. Third, bandwidth usage patterns can be seriously affected when employees turn to bandwidth-hungry applications such as file-sharing, and this could affect the productivity of business-related applications. And fourth, unrestricted access can and often does lead to infection by viruses, spyware and malware, since many of the sites that are contained in blocked categories are common sources of malicious attacks. Installing a content filtering solution can eliminate these and other problems.

Administrators are free to create local policies that are specifically designed to meet their own requirements and legislative mandates. The dynamic rating architecture can be used to block multiple categories (12 categories with CFS Basic and 56 categories with CFS Premium)—which affords a high level of transparent control and ease of administration, and the ability to enforce policies at a granular level. Even more flexibility can be added with the local URL filtering feature, which allows you to go beyond the categories to block or allow specific domains or hosts. Policies can be applied to individuals or entire groups, for example, with different policies for students and teachers in an educational environment; additionally, it can be set to block automatically downloadable files, or apply filtering by time of day.

SonicWALL CFS is built around a Web site caching and rating architecture that allows administrators to automatically block sites by category for easier administration. The caching feature stores URL ratings locally on the SonicWALL appliance, so response time is only a fraction of a second. In addition to filtering out offensive Web content, CFS also allows you to focus on performance enhancement by allowing you to filter out MP3 and streaming sites, and freeware and file downloading sites, which consume tremendous amounts of bandwidth, and are often the source of spyware and other malware.

Several pieces of legislation require content filtering on some level, and SonicWALL's CFS can be used to meet those legislative demands. At the educational level, the Children's Internet Protection Act (CIPA) requires all schools and libraries that receive eRate funding to install content filtering. The flexibility of CFS, and the ability to set custom policies for different groups or different times of day, makes it ideal for educational settings. In addition, the reporting necessary to comply with these mandates can be fulfilled by SonicWALL's Global Management System (GMS) and ViewPoint reporting package.

In addition to legislation such as CIPA, CFS is an integral part of internal compliance programs designed to reduce the liabilities that may incur when inappropriate content is allowed into the network. When Web access is unrestricted, not only is the result counter-productive, it can also result in costly lawsuits.

SonicWALL's ViewPoint reporting software along with SonicWALL CFS can allow customers to run granular reports summarizing web access details. Both real-time and historical reports can be easily customized and delivered in a variety of formats. In addition to comprehensive graphical reports, users also can take advantage of "at-a-glance" reporting.

SonicWALL's CFS is based on a rating architecture that relies on a dynamic database to block objectionable or inappropriate Web sites. SonicWALL CFS cross-references all Web sites as they are requested, against a vast and highly accurate database of URLs, IP addresses and domains. The SonicWALL appliance then receives a rating in real time, and then compares that rating to the local policy setting. The appliance will then either allow or deny the request, based on locally-configured policy.

SonicWALL CFS categorizes millions of URLs, IP addresses and domains in a continuously updated, dynamically rated database. CFS rates over four million URLs, with hundreds more added daily. Because the ratings are determined both by artificial intelligence and human observation, the database is highly accurate, and the instance of false positives is minimized. The policy-based system allows the administrator to block all pre-defined categories or any combination of categories, and to apply these policies on a granular level. For example, if one group of users requires access to sites typically found within one category, this level of access can be granted, while still denying access to other users.

Categories range from offensive types of content such as "Violence," which would include anti-social Web sites that advocate use of weapons or explosives, to sites that may not be offensive but would otherwise cause a potential risk to the network in terms of bandwidth usage, such as "Software downloads" or "Streaming Media/MP3".

When you are facing multiple attacks from multiple locations, you have to have multiple layers of protection. This is why SonicWALL's strategy is to provide a layered approach to anti-virus and anti-spyware protection, starting at the gateway, and then extending to both the client and the server. The gateway solution provides the first layer of defense at the perimeter, stopping most attacks before they enter the network. But clients and servers are also vulnerable points of entry that can be leveraged by a sophisticated attacker to target a network from the inside out, taking advantage of user errors or device misconfigurations. Protection at multiple layers is the best defense against even the most sophisticated blended threats.

Servers can be especially vulnerable to attack, even inside the perimeter, because they continually exchange data with outside sources. As a central point for data access, a server can rapidly spread viruses throughout the entire network. SonicWALL Client/Server Anti-Virus Suite protects sensitive information residing on messaging servers, Web servers, database servers, collaboration servers, as well as individual desktops and laptops from viral infections on the network. It also stops viruses that are already on the network from proliferating during the server backup, a common infection scenario. In addition, this protection is based on an advanced scanning engine that can capture both known and new viruses before they have a chance to spread. When a virus is detected, it can be automatically cleaned, deleted, or quarantined.

The next point of vulnerability that attackers may target is the individual client. Threats may be able to bypass the gateway and server, specifically targeting individual desktops or laptops through applications like instant messaging, streaming media, or P2P, in addition to unauthorized portable media such as CDs or flash drives. The next layer of protection is to ensure that the anti-virus and anti-spyware application is not only installed and updated, but also active.

SonicWALL Client/Server Anti-Virus Suite provides for always-on protection, with daily anti-virus and anti-spyware updates that do not require end-user intervention. The updates are fully automated, so there is no chance of human error or omission.

At the client level, protection is automated and always on, with daily signature updates. The deployment of client software and all updates is enforced and automated, regardless of whether the computer is on the managed network or on an unmanaged network. The automated anti-virus and anti-spyware deployment keeps administrative overhead to a minimum, while also enforcing policy and making sure that each endpoint is protected before connecting.

Click on the image to Zoom In

Unlike consumer products, SonicWALL's anti-virus products offer centralized policy-based management and reporting for the clients and servers on your network. It allows granular control of the security policy applied to the different devices connecting to the network. Further, changes and updates can be easily implemented locally or remotely by a click of the mouse. Centralized web-based management and reporting gives administrators unprecedented visibility into the security status of all managed devices connected to the network with comprehensive logging and detailed reporting at the individual workstation level.

Click on the image to Zoom In

SonicWALL TotalSecure removes the complexity associated with choosing between a host of point products and add-on services by integrating comprehensive network security in a convenient and affordable package. Every TotalSecure solution includes:

• Gateway Anti-Virus, Anti-Spyware and Intrusion Prevention Service subscription (1 year)
  
• Content Filtering Service subscription - Standard Edition on TZ Series and Premium Business Edition on PRO Series (1 year)
  
• Dynamic Support 24x7 subscription (1 year)
  
• ViewPoint reporting software
  
• SonicWALL deep packet inspection network security appliance (wired and wireless options)

SonicWALL TotalSecure makes it easy to:

• Eliminate viruses, worms and Trojans
  
• Block spyware, adware, keyloggers, malicious mobile code (MMC) and other dangerous applications
  
• Protect networks against intrusions from hackers and bots
  
• Filter access to unproductive, inappropriate and illegal objectionable content
  
• Restrict recreational file-sharing, multimedia streaming and downloading from peer-to-peer applications
  
• Implement comprehensive security measures with a single installation
  
• View reports on threats and activities
  
• Securely access your office network from a remote location

All of these services are enabled via a powerful firewall frequently referred to as a unified threat management appliance. SonicWALL offers multiple versions of TotalSecure solutions with wired and wireless options to meet the needs of your organization.

• TotalSecure 5 Series for home and small offices with up to 5 employees
  
• TotalSecure 10 Series for small offices with up to 10 employees
  
• TotalSecure 25 Series for medium offices with up to 25 employees
  
• TotalSecure 3G Series for medium offices with up to 25 employees for wireless broadband networking and 3G failover.
  
• TotalSecure 25 Switch for medium offices with up to 25 employees who need an integrated 24 port switch
  
• TotalSecure Enterprise for large offices for 25 or more employees

1. Plug it in to the wall, your inbound network connection and to your internal network.
   
2. Register your new appliance at mysonicwall.com.
   
3. Download the latest updates to ensure you are fully protected.

Now there's a solution that brings together the essential elements every organization requires at a fraction of the price of independent products. The SonicWALL® Comprehensive Gateway Security Suite combines security, productivity, reporting and support in a single, low-cost solution. Available on SonicWALL PRO and TZ Series integrated security appliances, the Comprehensive Gateway Security Suite is the perfect solution for turning your SonicWALL into a total security and productivity platform.

The Comprehensive Gateway Security Suite includes the Gateway Anti-Virus, Anti-Spyware and Intrusion Prevention Service to deliver intelligent, real-time network security protection against the latest blended threats, including viruses, spyware, worms, Trojans, software vulnerabilities and other malicious code.

SonicWALL Content Filtering Service enforces productivity and protection policies for businesses and schools by employing an innovative rating architecture and dynamically updated database to block objectionable and inappropriate Web content. (Note: TZ Series appliances receive Content Filtering Service Standard Edition. PRO Series appliances receive Content Filtering Service Premium Edition.)

SonicWALL ViewPoint reporting software gives administrators instant insight into network security status through easy-to-understand real-time and historical reports on a comprehensive set of monitored functions.

Designed for customers who need advanced technical support and the additional benefits of on-going software and firmware updates, SonicWALL Dynamic Support 24X7 is an around-the-clock service that includes:

• Telephone and Web-based support 24x7
  
• All software and firmware updates and upgrades
  
• Advance Exchange hardware replacement in the event of failure
  
• Access to SonicWALL's electronic support tools