This article will guide you through configuring the above Security Services SonicWall firewall. Security services include Gateway Anti-Virus, Intrusion Prevention and Anti-Spyware.
After activating the License for security services on mySonicWall.com, you will see the License status at System -> Status/Licenses. You can then activate Security Services and apply to the Zones you desire.
*On SonicOS 7.X :
– Move to Policy ->Security Services-> Gateway Anti-Virus.
– Below GATEWAY ANTI-VIRUS GLOBAL SETTINGSenable the option Enable Gateway Anti-Virus.
– Inbound Inspection will be enabled by default HTTP, FTP, IMAP, SMTP, POP3, You can enable Outbound Inspection if necessary.
– If you want to configure some IP addresses that will not be checked by the Anti-Virus gateway, you can set them by clicking Configure. You will have options Gateway AV Exclusion List.
– Move forward Policy -> Security Services -> Intrusion Prevention.
– Below IPS GLOBAL SETTINGS, Enable option Enable IPS.
– You will have 3 Signature Groups High Priority Attacks, Medium Priority Attacks and Low Priority Attacks. You can enable Detection and Prevention according to your needs, but according to the configuration, it is recommended that you leave Prevention disabled and only enable Detection for Low priority attacks (Enabling prevention for low priority attacks will drop ICMP).
– Move forward Policy -> Security Services -> Anti-Spyware.
– Below ANTI-SPYWARE GLOBAL SETTINGS, Enable option Enable Anti-Spyware.
* Next we will apply security services to the Zone:
– Move forward Object -> Match Objects -> Zones , Edit the desired Zone by clicking on the configure icon and apply security services by activating it Enable Gateway Anti-Virus Service, Enable IPS and Enable Anti-Spyware Service.
– Similarly, you can configure other Zones according to your needs.
*On SonicOS 6.5 :
– Move forward Manage -> Security Services -> Gateway Anti-Virus. Check in Enable Gateway Anti-Virus. By default, Inbound Inspection will be enabled HTTP, FTP, IMAP, SMTP, POP3. You can enable Outbound Inspection if necessary.
– If you want to configure some IP addresses that will not be checked by the Anti-Virus gateway, you can set them by clicking Configure Gateway AV Settings. You will have options Gateway AV Exclusion List.
– Next move forward Manage -> Security Services ->Intrusion Prevention. Check in Enable IPS. You will have 3 Signature Groups High Priority Attacks, Medium Priority Attacks and Low Priority Attacks. You can enable Detection and Prevention according to your needs, but according to the configuration, it is recommended that you leave Prevention disabled and only enable Detection for Low priority attacks (Enabling prevention for low priority attacks will drop ICMP).
– Similar Manage -> Security Services -> Anti-Spyware and enable Anti-Spyware, you can leave Low Danger Level Spyware disabled for Prevention and enabled for Detection.
* Next we will apply security services to the Zone:
– Move forward Manage -> Network -> Zones. Edit the desired Zone by clicking on the configure icon and enable Security Services by checking it Enable Gateway Anti-Virus Service, Enable IPS and Enable Anti-Spyware Service.
– Similarly, you can configure other Zones according to your needs.
– So we have configured the above Security Services SonicWall firewall device.
!!! Thank you for following this article!!!
Xem tiếp...