Does TZs isolate infected computers?
César_S
Newbie ✭
Hello.
I hope that everyone's doing well.
When I had my training to get my sonicwall administrator certificate the teacher told me that the TZs can isolate computers from the network when they get infected.
Is it true? and if so, how can I set this up?
Best Answer
-
CORRECT ANSWER
BWC
Cybersecurity Overlord ✭✭✭
@César_S Capture Client is an Endpoint Security Solution and includes all the bells and whistles. The "Disconnect from Network" Option is located in the Threat Protection, but it does no "Security Heartbeat" if you're looking for something like that.
The Network Quarantine in CC is a basic implementation, whenever a Threat is detected only Communication with the backend is possible. The native Client Firewall Control in SentinelOne (which is incluced in CC) can do a few more tricks, but no Communication with the SNWL Firewall.
--Michael@BWC
1
Answers
Look into Sonicwall's Capture Client. The TZ alone cannot automatically isolate a device if it becomes infected.
I'll try the trial.
This will install any anti malware software on the endpoints?
Thank you for your reply! :)
I've been trying the Advanced version of capture client.
Would it be viable to install this on a Linux server with a website that can be seen by the outside?