DPI-SSL Overview

* 
NOTE: DPI-SSL is supported on all appliances.

Deep Packet Inspection of Secure Socket Layer (DPI-SSL) extends SonicWALL’s Deep Packet Inspection technology to allow for the inspection of encrypted HTTPS traffic and other SSL-based traffic. The SSL traffic is decrypted transparently, scanned for threats and then re-encrypted and sent along to its destination if no threats or vulnerabilities are found. DPI-SSL provides additional security, application control, and data leakage prevention for analyzing encrypted HTTPS and other SSL-based traffic. DPI-SSL supports TLS 1.0.

The following security services and features are capable of utilizing DPI-SSL:

Gateway Anti-Virus
Gateway Anti-Spyware
Intrusion Prevention
Content Filtering
Application Firewall

DPI-SSL has two main deployment scenarios:

Client DPI-SSL: Used to inspect HTTPS traffic when clients on the firewall’s LAN access content located on the WAN.
Server DPI-SSL: Used to inspect HTTPS traffic when remote clients connect over the WAN to access content located on the firewall’s LAN.

Table 131 shows each platform and the maximum number of concurrent connections on which the appliance can perform Client DPI-SSL inspection.

 

Table 131. Maximum concurrent connections per platform supported by Client DPI-SSL

Hardware Model

Max Concurrent DPI-SSL Connections

SM 9600

8000

SM 9400

8000

SM 9200

8000

NSA 6600

3000

NSA 5600

2000

NSA 4600

350

NSA 3600

250

NSA 2600

250

TZ600

250

TZ500/TZ500W

250

TZ400/TZ400W

250

TZ300/TZ300W

250

SOHO W

100