Attacks/Breaches
10/27/2011
02:51 PM
Dark Reading
Dark Reading
Products and Releases
Connect Directly
RSS
E-Mail
50%
50%

SonicWALL Extends Branch Office Protection With New Next-Generation Application-Aware Firewalls

Unveils NSA 220 Series and NSA 250M Series

SAN JOSE, Calif., Oct. 27, 2011 /PRNewswire/ -- SonicWALL, Inc., the leading provider of intelligent network security and data protection solutions, today introduced two high-performance, application-aware next-generation firewalls for branch offices and small- medium-sized businesses (SMBs). The NSA 220 Series and NSA 250M Series deliver an unmatched combination of security, performance and price in this class of next-generation firewalls.

The NSA 220 and 250M Series offer firewall protection with tightly integrated intrusion prevention, comprehensive gateway anti-malware services and granular application intelligence and control. Both appliances are available as dual-band wireless models. The NSA 250M Series also supports a variety of modules such as T1/E1, ADSL (Annex A & B), 2GbE SFP and LAN Bypass to further expand its deployment flexibility and reduce maintenance costs through equipment consolidation.

As well as providing extensive security for branch offices without degrading performance, the new appliances allow administrators to manage the unproductive use of network resources such as social media applications that eat away at precious network bandwidth and company resources if left unchecked. For example, a network administrator can allow the marketing team to reach out to customers via Facebook while restricting social and browser gaming during business hours.

"In distributed environments with multiple branch offices, the security at the periphery must be as good as the security at the core," said Dmitriy Ayrapetov, product line manager network security at SonicWALL. "With the introduction of the NSA 220 and 250M, branch offices now have full deep packet inspection security for their entire network, including SSL-encrypted traffic while being able to take control of all the applications on their network. SonicWALL is the only company to deliver this scanning capability in this class of products."

The NSA 220 and 250M Series appliances offer advanced application traffic analytics to provide granular insight into application traffic, bandwidth utilization and security threats for troubleshooting and forensics, both in a real-time view on the firewall and a historic view through syslog, IPFIX and NetFlow exported data. Additionally, the NSA 220 and 250M tightly integrate with SonicWALL's recently announced WAN acceleration appliances, reducing network traffic and latency between remote offices.

Key Features of SonicWALL NSA 220 and 250M Series

The SonicWALL NSA 220 and 250M Series high-performance next-generation firewalls provide distributed enterprises and branch offices alike with in-depth frontline security, as well as application and user control without compromising on network performance.

SonicWALL Reassembly-Free Deep Packet Inspection(TM) (RFDPI)(1) engine protects against malware such as Trojans and worms, and segments out credit card transaction traffic as mandated by PCI DSS regulations. Unlike other scanning engines, the RFDPI engine is not limited by file size or the amount of concurrent traffic it can scan.

SonicWALL Application Intelligence, Control and Visualization enables IT to granularly view and control bandwidth-consuming and potentially dangerous application traffic over the network, even between widely distributed locations.

SonicWALL Clean Wireless(TM), optionally integrated into dual-band wireless models or via SonicWALL SonicPoint wireless access points, provides powerful and secure 802.11a/b/g/n 3x3 MIMO wireless, and enables scanning for rogue wireless access points in compliance with PCI DSS.

SonicWALL Clean VPN(TM) provides integrated secure remote access via site-to-site IPSec VPN or granular, easy-to-use SSL VPN.

SonicWALL WAN Acceleration, enabled by the SonicWALL WXA Series, increases file transfer speeds between remote branch office sites and drives secure network optimization.

Integrated modules support (on NSA 250M and NSA 250M-W Series appliances) reduces acquisition and maintenance costs through equipment consolidation, and adds deployment flexibility with support for SFP, T1/E1, ADSL (Annex A & Annex B) and LAN Bypass modules.

Availability

SonicWALL NSA 220 Series is available immediately.

SonicWALL NSA 250M Series is available immediately.

Learn more about the new Network Security Appliance 220 Series and 250M Series.

For more news on Dynamic Security and Next-Generation Networks, follow SonicWALL on LinkedIn, Facebook and Twitter.

About SonicWALL, Inc.

Guided by its vision of Dynamic Security for the Global Network, SonicWALL develops advanced intelligent network security and data protection solutions that adapt as organizations evolve and as threats evolve. Trusted by small and large enterprises worldwide, SonicWALL solutions are designed to detect and control applications and protect networks from intrusions and malware attacks through award-winning hardware, software and virtual appliance-based solutions. For more information, visit http://www.sonicwall.com/.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Flash Poll
Current Issue
Cartoon
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-6117
Published: 2014-07-11
Dahua DVR 2.608.0000.0 and 2.608.GV00.0 allows remote attackers to bypass authentication and obtain sensitive information including user credentials, change user passwords, clear log files, and perform other actions via a request to TCP port 37777.

CVE-2014-0174
Published: 2014-07-11
Cumin (aka MRG Management Console), as used in Red Hat Enterprise MRG 2.5, does not include the HTTPOnly flag in a Set-Cookie header for the session cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie.

CVE-2014-3485
Published: 2014-07-11
The REST API in the ovirt-engine in oVirt, as used in Red Hat Enterprise Virtualization (rhevm) 3.4, allows remote authenticated users to read arbitrary files and have other unspecified impact via unknown vectors, related to an XML External Entity (XXE) issue.

CVE-2014-3499
Published: 2014-07-11
Docker 1.0.0 uses world-readable and world-writable permissions on the management socket, which allows local users to gain privileges via unspecified vectors.

CVE-2014-3503
Published: 2014-07-11
Apache Syncope 1.1.x before 1.1.8 uses weak random values to generate passwords, which makes it easier for remote attackers to guess the password via a brute force attack.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Marilyn Cohodas and her guests look at the evolving nature of the relationship between CIO and CSO.