PRO 4100

Powered by SC Magazine
 

SonicWALL’s PRO line of UTM appliances offers a good collection of features over and beyond a basic firewall, although this core feature is well provided. The 4100 we received is at the upper end of the line, offering 10 Gigabit Ethernet ports and throughput of 800Mbps. A 2.4Gbps version is also available.

SonicWALL’s PRO line of UTM appliances offers a good collection of features over and beyond a basic firewall, although this core feature is well provided. The 4100 we received is at the upper end of the line, offering 10 Gigabit Ethernet ports and throughput of 800Mbps. A 2.4Gbps version is also available.

Connecting to the unit to set it up was simplicity itself – DHCP is enabled by default, so restarting the interface on our management station had us connected in moments. Why most vendors require manual reconfiguration to the default IP subnet is beyond us, but SonicWALL gets it right.

We were disappointed to see the default management service running over HTTP, but the page uses crypto (in JavaScript) to avoid sending the administration password in plaintext.

The system offers an initial set-up wizard, as well as wizards for other common tasks like setting up public servers and VPNs. The main administration screen is headed up with a concise list of items needing attention, which was very useful, but did not link to the appropriate page to rectify the problem. This is followed by a well-designed snapshot of various configuration items – well-designed, but not really useful in a day-to-day sense. A dashboard of alerts, connections and active rules would be more useful than the system and registration status.

We did like the onscreen link status for interfaces – few other products provide a visible alert for physically disconnected links.

The alerts are a bit excitable. For example, a portscan was flagged up, but identified as a syn flood attack and a collection of attacks against non-existent services. So a very basic scan appeared as a major incident in the log. We like to see scans logged, but not to this scale.

Some parts of the interface, particularly information and help screens, are actually framesets pointing to SonicWALL’s own servers. This ensures up-to-date data, but if the unit is internal and has no internet connection, this will cause problems.

Basic firewall and VPN tasks were all accomplished with ease, but the interface could be slow. Some very basic bandwidth limiting is provided, as well as 802.1p for traffic prioritization.

You also get AV, IPS (although no policies are included out of the box and must be downloaded), email and content filtering. An anti-spyware feature is also included. Integration with SonicWALL’s wireless security products is welcome, integrating rogue AP detection into the UTM management interface.


PRO 4100
 
Features:
Ease of Use:
Performance:
Documentation:
Support:
Value for Money:
Overall Rating
Verdict:
For: Well-integrated collection of features.
Against: A lot of updates must be downloaded before deployment.
Verdict: Good suite, well integrated with all the right firewall and VPN features.
Product Info
Supplier:
 
 
 
 
Top Stories
Microsoft confirms Australian Azure launch
Available from next week.
 
NBN Co names first 140 FTTN sites
National trial extended.
 
Cloud, big data propel bank CISOs into the boardroom
And this time, they are welcome.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
In which area is your IT shop hiring the most staff?




   |   View results
IT security and risk
  25%
 
Sourcing and strategy
  12%
 
IT infrastructure (servers, storage, networking)
  22%
 
End user computing (desktops, mobiles, apps)
  14%
 
Software development
  27%
TOTAL VOTES: 259

Vote
Would your InfoSec team be prepared to share threat data with the Australian Government?

   |   View results
Yes
  62%
 
No
  38%
TOTAL VOTES: 82

Vote