Call us
+44 (0)20 8830 6820

Advanced Gateway Security Suite Bundle for TZ400 Series

BEST PROTECTION: Advanced Gateway Security Suite (AGSS) includes - Capture Advanced Threat Protection, Gateway Anti-Virus, Anti-Spyware, Intrusion Prevention, Application Firewall Service, Content Filtering Premium Services, and 24x7 Support with firmware
SKU: 01-SSC-1440
£1,467.01
£1,113.46
Advanced Gateway Security Suite (AGSS)

Complete network security, content filtering, application control, CaptureATP, gateway anti-virus, 24x7 support and firewall management in a single integrated package.

Understanding network security can be complicated, but ensuring that your network is secure from known and unknown malicious threats shouldn’t be. SonicWall™ Advanced Gateway Security Suite (AGSS) removes the complexity associated with choosing a host of addon security services by integrating all the network security service required for total protection into a convenient, affordable package.

Available on SonicWall TZ, Network Security Appliance (NSA), and SuperMassive firewalls, SonicWall AGSS keeps your network safe from zero-day attacks, viruses, intrusions, botnets, spyware, Trojans, worms and other malicious attacks. Examine suspicious files at the gateway in a cloud-based multi-layered sandbox for inspection to keep your network safe from unknown threats. As soon as new threats are identified and often before software vendors can patch their software, SonicWall firewalls and Cloud AV database are automatically updated with signatures that protect against these threats. Inside every SonicWall firewall is a patented Reassembly-Free Deep Packet Inspection® engine that scans traffic against multiple application types and protocols, ensuring your network has around-the-clock protection from internal and external attacks and application vulnerabilities. Your SonicWall solution also provides the tools to enforce Internet use policies and control internal access to inappropriate, unproductive and potentially illegal web content with comprehensive content filtering. Finally, this powerful services bundle also includes around-the-clock technical support, crucial firmware updates and hardware replacement.

Advanced Gateway Security Suite (AGSS) at a Glance
  • Real-time gateway anti-virus engine that scans for viruses, worms, Trojans and other Internet threats in real-time.
  • Dynamic spyware protection blocks the installation of malicious spyware and disrupts existing spyware communications.
  • Powerful intrusion prevention protects against an array of network-based threats such as worms, Trojans and other malicious code.
  • Application intelligence and control provides application classification and policy enforcement.
  • Dynamically updated signature database for continuous threat protection.
  • Multi-engine sandbox to prevent unknown threats such as zero-day attacks and ransomware.
  1. Capture Advanced Threat Protection (Capture ATP)
    Block zero-day attacks before they enter your network.
    Rapidly deploy remediation signatures to other network security appliances.
    Establish advanced protection against the changing threat landscape
    Analyze a broad range of file types.
  2. Content Filtering Service (CFS)
    Comprehensive content filtering provides customized control of internal access to inappropriate, unproductive and potentially illegal web content.
    Website ratings cached locally on SonicWall firewalls make response time to frequently visited sites virtually instantaneous.
    Dynamically updated rating architecture cross-references all requested websites against a database in the cloud containing millions of URLs, IP addresses and domains and then compares each rating to the local policy setting.
  3. Content Filtering Client
    Extend security and productivity by enforcing Internet use policies on endpoint devices located outside the firewall perimeter with the SonicWall Content Filtering Client. Available as a separate subscription service for Windows, Mac OS and Chrome endpoints.
  4. 24x7 Support
    Software and firmware updates and upgrades maintain network security to keep your solution as good as new.
    Around-the-clock access to chat, telephone, email and web-based support for basic configuration and troubleshooting assistance.
    Advance exchange hardware replacement in the event of failure.
    Annual subscription to SonicWall’s Service Bulletins and access to electronic support tools and moderated discussion groups.
Capture Advanced Threat Protection Service (CATPS)
For effective zero-day threat protection, organizations need solutions that include malware-analysis technologies and can detect evasive advanced threats and malware — today and tomorrow.

To protect customers against the increasing dangers of zero-day threats, SonicWall Capture Advanced Threat Protection Service — a cloud-based service available with SonicWall firewalls — detects and and can block advanced threats at the gateway until verdict. This service is the only advanced threat-detection offering that combines multi-layer sandboxing, including full system emulation and virtualization techniques, to analyze suspicious code behavior. This powerful combination detects more threats than single-engine sandbox solutions, which are compute environment specific and susceptible to evasion.

Key Benefits
  • High security effectiveness against unknown threats
  • Near real-time signature deployment protects from follow on attacks
  • Reduced total cost of ownership
  • Block files at the gateway until verdict
  • Multiple engines process files in parallel for rapid verdicts
  • SonicWall's RTDMI engine blocks unknown mass-market malware utilizing real-time memory-based inspection techniques

The solution scans traffic and extracts suspicious code for analysis, but unlike other gateway solutions, analyzes a broad range of file sizes and types (including executable programs, DLL, PDFs, MS Office documents, archives, JAR and APK). Global threat intelligence infrastructure rapidly deploys remediation signatures for newly identified threats to all SonicWall network security appliances, thus preventing further infiltration. Customers benefit from high-security effectiveness, fast response times and reduced total cost of ownership.

The SonicWall Capture reporting page displays daily at a glance results. Colored bars on the report indicate days where malware was discovered. Administrators have the ability to click on individual daily results and apply filters to quickly see malicious files with results.

Features
Multi-engine advanced threat analysis

SonicWall Capture Service extends firewall threat protection to detect and prevent zero-day attacks. The firewall inspects traffic, and detects and blocks intrusions and known malware. Suspicious files are sent to the SonicWall Capture cloud service for analysis. The multi-engine sandbox platform, which includes virtualized sandboxing, full system emulation and hypervisorlevel analysis technology, executes suspicious code and analyzes behavior, provides comprehensive visibility to malicious activity while resisting evasion tactics and maximizing zero-day threat detection.

Broad file type analysis

The service supports analysis of a broad range of file sizes and types, including executable programs (PE), DLL, PDFs, MS Office documents, archives, JAR and APK, plus multiple operating systems including Windows and Android. Administrators can customize protection by selecting or excluding files to be sent to the cloud for analysis by file type, file size, sender, recipient or protocol. In addition, administrators can manually submit files to the cloud service for analysis.

Blocks until verdict

To prevent potentially malicious files from entering the network, files sent to the cloud service for analysis can be held at the gateway until a verdict is determined.

Rapid deployment of remediation signatures

When a file is identified as malicious, a signature is immediately available to firewalls with SonicWall Capture subscriptions to prevent followon attacks. In addition, the malware is submitted to the SonicWall Capture Labs threat research team for further analysis and inclusion with threat information into the Gateway Anti-Virus and IPS signature databases. Additionally, it is sent to URL, IP and domain reputation databases within 48 hours.

Reporting and alerts

The SonicWall Capture Service provides an at-a-glance threat analysis dashboard and reports, which detail the analysis results for files sent to the service. including source, destination and a summary plus details of malware action once detonated. Firewall log alerts provide notification of suspicious files sent to the SonicWall Capture Service, and file analysis verdict.

Content Filtering Service (CFS) enforces internet use policies that block computers located behind the firewall, from accessing inappropriate and unproductive websites over a LAN, wireless LAN (WLAN), or VPN.

Educational institutions, businesses and government agencies assume substantial risks when they provide students and employees IT-issued computers that can be used to access the Internet, even when the device is behind the firewall perimeter where organizational web use policies are enforced. This is particularly true when those connections are used to access sites containing information or images that are inappropriate, dangerous or even illegal. These sites may also be infected with malware that can be inadvertently downloaded and then used to steal confidential information.

Schools, in particular, have a responsibility to protect students from inappropriate and harmful web content. For businesses and government agencies, providing employees with uncontrolled web access can result in non-productive web surfing, creating tremendous losses in productivity, not to mention the potential for legal liability.

Benefits
  • Best in-class protection
  • Granular content filtering controls
  • Dynamically updated rating architecture
  • Application traffic analytics
  • Easy-to-use web-based management
  • High-performance web caching and rating architecture
  • IP-based HTTPS content filtering
  • Scalable, cost-effective solution
  • Content Filtering Client for roaming devices

CFS running on SonicWall Unified Threat Management and next generation firewalls (NGFWs) is a powerful protection and productivity solution that delivers unequaled content filtering enforcement for educational institutions, businesses, libraries and government agencies. Using SonicWall CFS, organizations have control over the websites students and employees can access using their IT-issued computer behind the firewall.
SonicWall CFS compares requested websites against a massive database in the cloud containing millions of rated URLs, IP addresses and websites. CFS provides administrators with the tools to create and apply policies that allow or deny access to sites based on individual or group identity, or by time of day, for over 56 pre-defined categories. CFS also dynamically caches website ratings locally on the SonicWall firewall for nearinstantaneous response times.

For laptops that are used outside the firewall perimeter, the SonicWall Content Filtering Client addresses safety, security and productivity concerns by extending the controls to block harmful and unproductive web content. The client is automatically deployed and provisioned through a SonicWall firewall. In addition to providing IT administrators the tools to control web-based access for roaming devices, the Content Filtering Client can be configured to automatically switch enforcement to the internal policy once the device reconnects to the network firewall. The client is managed and monitored using a powerful policy and reporting engine in the cloud that is accessed seamlessly from the firewall interface. In the event an outdated client attempts to connect to the internal network to access the Internet, the connection is denied and the user receives a message with steps for remediation.

Features

Granular content filtering allows the administrator to block or apply bandwidth management to all predefined categories or any combination of categories. Administrators can apply User Level Authentication (ULA) and Single Sign-On (SSO) to enforce username and password logon. CFS can block potentially harmful content such as Java™, ActiveX®, and Cookies, as well as schedule filtering by time of day, such as during school or business hours. CFS also enhances performance by filtering out IM, MP3s, streaming media, freeware and other files that drain bandwidth.

Dynamically updated rating architecture cross-references all requested websites against a highly accurate database categorizing millions of URLs, IP addresses and domains. The SonicWall firewall receives ratings in real time, and then compares each rating to the local policy setting. The appliance will then either allow or deny the request based on the administrator’s locally configured policy.

Application traffic analytics suite includes SonicWall Global Management System (GMS®) and SonicWall Analyzer, each of which provides real-time and historic analysis of data transmitted through the firewall, including websites blocked and visited by user.

Easy-to-use web-based management enables flexible policy configuration and complete control over Internet usage. Administrators can enforce multiple custom policies for individual users, groups or specific category types. Local
URL filtering controls can allow or deny specific domains or hosts. To block objectionable and unproductive material more effectively, administrators can also create or customize filtering lists.

High-performance web caching and rating architecture allows administrators to block sites easily and automatically by category. URL ratings are cached locally on the SonicWall firewall, so that response time for subsequent access of frequently visited sites is only a fraction of a second.

IP-based HTTPS content filtering allows administrators to control user access to websites over encrypted HTTPS. HTTPS filtering is based on the categorical rating of websites containing information or images that are objectionable or unproductive such as violence, hate, online banking, shopping and others.

Scalable, cost-effective solution controls content filtering from the SonicWall firewall, eliminating the need for additional hardware or deployment expenditures on a separate dedicated filtering server.

A SonicWall support license provides telephone and web-based support, unlimited software/firmware updates and upgrades, and hardware replacement for units which have faults.

SonicWall support agreements provide technical assistance during the license coverage hours. A SonicWall technical specialist will work remotely with you to diagnose and identify software and hardware not performing to documented specifications. Support also includes general assistance regarding use and implementation on a limited basis.

SonicWall’s support offerings do not include step-by-step installation or configuration of products or services. If you need installation or configuration assistance, please contact us for a quote.

Support agreements provide for replacement of failing hardware (not applicable to the NSv series) returned to a SonicWall factory. The replacement product may be new, or like-new. In the event of product obsolescence, SonicWall reserves the right to replace failing product with a product of like or better features and functionality.

*
*
*
back to top