DPI-SSL Overview

This section provides an introduction to the SonicOS Enhanced DPI-SSL feature as managed within GMS. Deep Packet Inspection of Secure Socket Layer (DPI-SSL) extends SonicWALL’s Deep Packet Inspection technology to allow for the inspection of encrypted HTTPS traffic and other SSL-based traffic. The SSL traffic is decrypted transparently, scanned for threats and then re-encrypted and sent along to its destination if no threats or vulnerabilities are found. DPI-SSL provides additional security, application control, and data leakage prevention for analyzing encrypted HTTPS and other SSL-based traffic.

The following security services and features are capable of utilizing DPI-SSL:

•	Gateway Anti-Virus

•	Gateway Anti-Spyware

•	Intrusion Prevention

•	Content Filtering

•	Application Firewall

•	Packet Capture

•	Packet Mirror

DPI-SSL has two main deployment scenarios:

•	Client DPI-SSL: Used to inspect HTTPS traffic when clients on the SonicWALL security appliance’s LAN access content located on the WAN.

•	Server DPI-SSL: Used to inspect HTTPS traffic when remote clients connect over the WAN to access content located on the SonicWALL security appliance’s LAN.

The DPI-SSL feature is available in SonicOS Enhanced 5.6 and higher.