PRO 3060 Features
WAN ISP Failover
and Load Balancing
The PRO 3060 offers the ability to designate
one of the user-assigned ports to function
as a secondary WAN port, delivering highly
reliable network connectivity and robust performance.
This secondary WAN port can be used in "active-active"
load sharing or Failover configuration providing
a highly efficient method for distributing
WAN traffic.
VPN
Failover and Hardware Redundancy
The PRO 3060 includes various features focused
on increasing business continuity. Remote/branch
offices can seamlessly establish a VPN connection
to a secondary gateway at the corporate headquarters
should the VPN connection to the primary gateway
be terminated, offering continuous uptime.
When in "Hardware Failover" mode,
should the active unit fail, the passive unit
automatically detects and assumes responsibility
for forwarding traffic, offering greater reliability
and redundancy.
Multiple
Interfaces and Security Zones
With six fully configurable 10/100 Ethernet
interfaces, the PRO 3060 allows network administrators
to create additional WANs, LANs, DMZs and
custom-defined security zones for greater
network configuration flexibility as well
as internal security. Administrators can assign
multiple network interfaces, including the
VPN tunnel, to a pre- or custom-defined zone
and apply security policies, such as access
rules, content filtering or anti-virus enforcement,
for each zone. Using zones as the logical
addressing entity provides tremendous flexibility,
scalability and added internal security when
deploying SonicWALL security appliances in
various network topologies.
Object/Policy-based
Management
Network administrators can define an object,
such as a user group, network address range,
service or interface, once and then reuse
that object wherever it is needed. When security
policies or object members change, the administrator
can modify the object and propagate the changes
instantly without redefining rules, enabling
businesses to implement and manage security
policies easily and consistently.
Policy-Based
NAT
While continuing to provide standard NAT (many-to-one)
functionality, the PRO 3060 also exposes control
of NAT policies to administrators for one-to-one
NAT, many-to- many NAT, one-to-many NAT, inbound
Port Address Translation (PAT), flexible NAT
(for overlapping IP addresses) as well as
NAT policies on selective source/destination/service
translations. As a result, network administrators
have more control and flexibility to support
and manage various NAT requirements.
User
Group Policies
The PRO 3060 provides the option to create
and assign security policies to a large number
of users with minimal effort, simplifying
authentication for Internet and VPN access.
The PRO 3060 also comes with the capability
to restrict access to internal resources for
remote users based on group policies and user
authentication.
Configuration
Management
The PRO 3060 has the capability to save multiple
images of working configurations on the appliance
for a higher level of recovery in the case
of a configuration error. Administrators can
select which configuration load at start up
time as well as save configurations from multiple
firmware versions.
Bandwidth
Management
Enables an administrator to prioritize traffic
and dedicate bandwidth to higher priorities.
For example, VPN tunnels can be given a higher
priority. Increases productivity by ensuring
that critical traffic has priority over non-urgent
traffic. Important feature for the SMB market
where slower broadband Internet connections
are common.
Multiple
Configuration Management
SonicOS has the capability to save multiple
images of working configurations on the appliance
for a higher level of recovery in the case
of a configuration error. Administrators can
select which configuration load at start up
time as well as save configurations from multiple
firmware versions.
Built-in User Database
Creates and maintains a list of user accounts
within the SonicWALL, eliminating the need
for and costs associated with using a RADIUS
server to provide user authentication.
|
