when a new firmware release is available. System_systemSettingsView
This System > Settings page allows you to manage your firewall’s SonicOS versions and preferences.
Import Settings
To import a previously saved preferences file into the firewall, follow these instructions:
1. Click Import Settings to import a previously exported preferences file into the firewall. The Import Settings window is displayed.
Click Browse to locate the file which has a *.exp file name extension.
3. Select the preferences file.
4. Click Import, and restart the firewall.
Export Settings
To export configuration settings from the firewall, use the instructions below:
1. Click Export Settings. The Export Settings window is displayed.
Click Export.
3. Click Save, and then select a location to save the file. The file is named “sonicwall.exp” but can be renamed.
4. Click Save. This process can take up to a minute. The exported preferences file can be imported into the firewall if it is necessary to reset the firmware.
Send Diagnostic Reports
Click Send Diagnostic Reports to send system diagnostics to SonicWALL Technical Support. The status bar at the bottom of the screen displays “Please wait!” while sending the report, then displays “Diagnostic reports sent successfully”.
The Firmware Management section provides settings that allow for easy firmware upgrade and preferences management. The Firmware Management section allows you to:
• Upload and download firmware images and system settings.
• Boot to your choice of firmware and system settings.
• Manage system backups.
• Easily return your Dell SonicWALL Security Appliance to the previous system state.
Note Dell SonicWALL Security Appliance SafeMode, which uses the same settings used Firmware Management, provides quick recovery from uncertain configuration states.
Firmware Management Table
The Firmware Management table displays the following information:
• Firmware Image - in this column, the following types of firmware images are listed:
– Current Firmware - firmware currently loaded on the firewall.
– Current Firmware with Factory Default Settings - rebooting using this firmware image resets the firewall to its default IP addresses, username, and password.
– Current Firmware with Backup Settings - a firmware image created by clicking Create Backup.
– Uploaded Firmware - the latest uploaded version from mysonicwall.com.
– Uploaded Firmware with Factory Default Settings - the latest version uploaded with factory default settings.
System Backup - the backup firmware image and backup settings for the appliance.
• Version - the firmware version.
• Date - the day, date, and time of downloading the firmware.
• Size - the size of the firmware file in Megabytes (MB).
• Download - clicking the icon saves the firmware file to a new location on your computer or network. Only uploaded firmware can be saved to a different location.
• Boot - clicking the icon reboots the firewall with the firmware version listed in the same row.
CAUTION Clicking Boot next to any firmware image overwrites the existing current firmware image making it the Current Firmware image.
CAUTION When uploading firmware to the firewall, you must not interrupt the Web browser by closing the browser, clicking a link, or loading a new page. If the browser is interrupted, the firmware may become corrupted.
Updating Firmware Manually
Click Upload New Firmware... to upload new firmware to the Dell SonicWALL Security Appliance. The Upload Firmware window is displayed. Browse to the firmware file located on your local drive. Click Upload to upload the new firmware to the Dell SonicWALL Security Appliance.
Creating a Backup Firmware Image
When you click Create Backup..., the Dell SonicWALL Security Appliance takes a “snapshot” of your current system state, firmware and configuration preferences, and makes it the new System Backup firmware image. Clicking Create Backup... overwrites the existing System Backup firmware image as necessary.
Firmware Management
The Firmware Management table contains the following columns:
• Firmware Image - In this column, five types of firmware images are listed:
– Current Firmware, firmware currently loaded on the firewall
– Current Firmware with Factory Default Settings, rebooting using this firmware image resets the firewall to its default IP addresses, user name, and password
– System Backup - initial loaded firmware on the Dell SonicWALL Security Appliance.
• Version - The firmware version is listed in this column.
• Date - The day, date, and time of downloading the firmware.
• Size - The size of the firmware file in Megabytes (MB).
• Download - Clicking the icon saves the firmware file to a new location on your
computer or network. Only uploaded firmware can be saved to a different location.
• Boot - Clicking the icon reboots the firewall with the firmware version listed in the same row.
Note Clicking Boot next to any firmware image overwrites the existing current firmware image making it the Current Firmware image.
Click Boot in the firmware row of your choice to restart the Dell SonicWALL Security Appliance.
CAUTION Only select the Boot with firmware diagnostics enabled (if available) option if instructed to by SonicWALL technical support.
Sonic OS supports the Firmware Auto-Update feature, which helps ensure that your Dell SonicWALL Security Appliance has the latest firmware release. Firmware Auto-Update contains the following options:
• Enable Firmware Auto-Update - Displays an Alert icon when a new firmware release is available.
• Download new firmware automatically when available - Downloads new firmware releases to the Dell SonicWALL Security Appliance when they become available.
CAUTION Firmware updates are available only to registered users with a valid support contract. You must register your SonicWALL at https://www.mysonicwall.com.
When operating in FIPS (Federal Information Processing Standard) Mode, the Dell SonicWALL Security Appliance supports FIPS 140-2 Compliant security. Among the FIPS-compliant features of the Dell SonicWALL Security Appliance include PRNG based on SHA-1 and only FIPS-approved algorithms are supported (DES, 3DES, and AES with SHA-1).
Select Enable FIPS Mode to enable the Dell SonicWALL Security Appliance to comply with FIPS. When you check this setting, a dialog box is displayed with the following message: Warning! Modifying the FIPS mode will disconnect all users and restart the device. Click OK to proceed.
Click OK to reboot the security appliance in FIPS mode. A second warning displays. Click Yes to continue rebooting. To return to normal operation, clear the Enable FIPS Mode check box and reboot the firewall into non-FIPS mode.
CAUTION When using the Dell SonicWALL Security Appliance for FIPS-compliant operation, the tamper-evident sticker that is affixed to the Dell SonicWALL Security Appliance must remain in place and untouched.
The One-Touch Configuration Override feature is configured on the System > Settings page. It can be thought of us as a quick tune-up for your Dell SonicWALL network security appliance’s security settings. With a single click, One-Touch Configuration Override applies over sixty configuration settings to implement Dell SonicWALL’s recommended best practices. These settings ensure that your appliance is taking advantage of Dell SonicWALL’s security features.
There are two sets of One-Touch Configuration Override settings:
• DPI and Stateful Firewall Security – For network environments with Deep Packet Inspection (DPI) security services enabled, such as Gateway Anti-Virus, Intrusion Prevention, Anti-Spyware, and App Rules.
• Stateful Firewall Security – For network environments that do not have DPI security services enabled, but still want to employ SonicWALL’s stateful firewall security best practices.
Both of the One-Touch Configuration Override deployments implement the following configurations:
• Configure Administrator security best practices
• Enforce HTTPS login and disables ping
• Configure DNS Rebinding
• Configure Access Rules best practices
• Configure Firewall Settings best practices
• Configure Firewall Flood Protection best practices
• Configure VPN Advanced settings best practices
• Configure Log levels
• Enable Flow Reporting and Visualization
The DPI and Stateful Firewall Security deployment also configures the following DPI-related configurations:
• Enable DPI services on all applicable zones
• Enable App Rules
• Configure Gateway Anti-Virus best practices
• Configure Intrusion Prevention best practices
• Configure Anti-Spyware best practices
CAUTION Be aware that the One-Touch Configuration Override may change the behavior of your SonicWALL security appliance. Review the list of configurations before applying One-Touch Configuration Override.
In particular, the following configurations may affect the experience of the administrator:
- Administrator password requirements on the System > Administration page.
- Requiring HTTPS management.
- Disabling HTTP to HTTPS redirect.
- Disabling Ping management.