Detections
Analytics

TNS SonicWALL v5.8 Best Practices

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: TNS SonicWALL v5.8 Best Practices

Updated: 4/7/2020

Authority: TNS

Plugin: SonicWALL

Revision: 1.17

Estimated Item Count: 98

Audit Items

DescriptionCategories
SonicWALL - Ensure default 'admin' username is not used

ACCESS CONTROL, CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION

SonicWALL - AAA - LDAP server is trusted

ACCESS CONTROL, CONFIGURATION MANAGEMENT

SonicWALL - AAA - RADIUS server is trusted

ACCESS CONTROL, CONFIGURATION MANAGEMENT

SonicWALL - Anti-Spyware - Enabled per zone

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - AutoDownload Firmware - Enabled

CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY

SonicWALL - AutoUpdate - Enabled

CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY

SonicWALL - AV License - Not Expired

CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Client AV Enforcement On - DMZ

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Client AV Enforcement On - LAN

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Client AV Enforcement On - WLAN

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Content Filtering On - DMZ

ACCESS CONTROL, SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Content Filtering On - LAN

ACCESS CONTROL, SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Content Filtering On - WLAN

ACCESS CONTROL, SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Detection Prevention - ICMP packets

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Detection Prevention - IP TTL Decrement

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Detection Prevention - Randomize IP IDs

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Detection Prevention - Stealth Mode

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Disable insecure services - HTTP

CONFIGURATION MANAGEMENT

SonicWALL - Flood Protection - Layer 2 - All Interfaces

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Flood Protection - Layer 2 - Threshold

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Flood Protection - Layer 2 - WAN machines

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Flood Protection - Layer 3 - Attack Threshold

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Flood Protection - Layer 3 - Protection Mode

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Flood Protection - TCP - checksum enforcement

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Flood Protection - TCP - Enforce compliance

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Flood Protection - TCP - Handshake enforcement

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Flood Protection - TCP - Max Seg Lifetime

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Flood Protection - TCP - Timeout <= 5 minutes

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - GAV ON - DMZ

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - GAV ON - LAN

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - GAV ON - WAN

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - GAV ON - WLAN

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - GMS hostname/IP - Review

CONFIGURATION MANAGEMENT

SonicWALL - IDP ON - DMZ

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - IDP ON - LAN

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - IDP ON - WAN

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - IDP ON - WLAN

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Log Alert Emails - Enabled

AUDIT AND ACCOUNTABILITY, SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Logging Level - Information

AUDIT AND ACCOUNTABILITY, SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Login Banner - DMZ Zone

ACCESS CONTROL

SonicWALL - Login Banner - LAN Zone

ACCESS CONTROL

SonicWALL - Login Banner - VPN Zone

ACCESS CONTROL

SonicWALL - Login Banner - WAN Zone

ACCESS CONTROL

SonicWALL - Login Banner - WLAN Zone

ACCESS CONTROL

SonicWALL - Password Policy - Affected User types

IDENTIFICATION AND AUTHENTICATION

SonicWALL - Password Policy - Change Period <=30 days

IDENTIFICATION AND AUTHENTICATION

SonicWALL - Password Policy - Complexity Level

IDENTIFICATION AND AUTHENTICATION

SonicWALL - Password Policy - minimum length >= 8

IDENTIFICATION AND AUTHENTICATION

SonicWALL - Password Policy - Password Uniqueness >= 10

IDENTIFICATION AND AUTHENTICATION

SonicWALL - Password Policy - User Lockout - Enabled

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION