Firewall
Security Services

Add advanced, real-time threat protection to your SonicWall firewall.

Understanding and managing effective network security is challenging and complex. Fortunately, there is a simple solution to block advanced cyber attacks, assess and mitigate risk, and ease management for all types of firewalls.

SonicWall firewall security services keep organizations safe from malware, ransomware, viruses, intrusions, botnets, spyware, trojans, worms and other malicious attacks. This ensures organizations are defended by around-the-clock protection against the most advanced and persistent cyberattacks.

The featured image is for a product page about firewall security services that protect networks against advanced cyberattacks.

Enhance Attack Protection with Proven Services

Capture Advanced Threat Protection (ATP) Sandbox

  • Identify and block advanced malware, including ransomware, cryptojacking and more
  • Discover and stop unknown, zero-day attacks with patented Real-Time Deep Memory Inspection™ (RTDMI)
  • Analyze a broad range of operating systems and file types
  • Hold files sent to the cloud for analysis until a verdict is determined
  • Use convenient at-a-glance dashboard to create detailed reports

Bundle Security Services to Match Your Needs

SonicWall integrates a wide range of firewall security services into convenient, affordable bundles.

  • Threat Protection Security Suite
  • SonicWall’s standard set of firewall security services, the Threat Protection Security Suite is perfect for small organizations with a minimal footprint or for those just starting to build their security posture.
  • Eight proven threat protection services
  • Available on TZ 270, 370 and 470 firewall appliances
  • 24/7 Support
  • $100,000 Embedded Warranty by Cysurance
    (*Only for firewalls sold & registered after November 1st, 2024)
  • Essential Protection Security Suite
  • One of SonicWall’s most popular security service bundles, the Essential Protection Security Suite includes advanced threat protection tools and is perfect for both SMBs and mid-market organizations.
  • 10 advanced threat protection services
  • Includes Capture ATP with patented RTDMI technology
  • 24/7 Support
  • $100,000 Embedded Warranty by Cysurance
    (*Only for firewalls sold & registered after November 1st, 2024)
  • Advanced Protection Security Suite
  • The Advanced Protection Security Suite is purpose-built for enterprises and mature organizations driving toward a more robust security posture. The bundle includes everything from the previous packages, but adds powerful cloud-based network management and reporting.
  • 10 essential threat protection services
  • Includes Capture ATP with patented RTDMI technology
  • Cloud-based Network Management & 7-Day Reporting
    (**For TZ80, APSS includes 7-Day Full Reporting and Advanced Analytics that can be extended for 30, 90 or 365 Days)
  • 24/7 Support
  • $100,000 Embedded Warranty by Cysurance
    (*Only for firewalls sold & registered after November 1st, 2024)

Compare SonicWall Security Services Suites

Feature Threat Protection Security Suite* Essential Protection Security Suite Advanced Protection Security Suite
Each firewall security service bundle includes 24x7 SonicWall support, including a world-class online support portal.
24x7 Support
**For TZ80, APSS includes 7-Day Full Reporting and Advanced Analytics that can be extended for 30, 90 or 365 Days
Embedded Warranty
Protect against worms, trojans, software vulnerabilities and other intrusions by scanning all network traffic for malicious or anomalous patterns, thereby increasing network reliability and performance.
Intrusion Prevention System (IPS)
Application intelligence and control is a set of granular, application-specific policies providing app classification and policy enforcement to help administrators control and manage both business and non-business applications.
Application Control
Addresses safety, security and productivity concerns by providing the controls to enforce internet use policies and block access to harmful and unproductive web content.
Content Filtering Service
The RFDPI engine scans all inbound, outbound and intra-zone traffic for viruses, Trojans, key loggers and other malware — in files of unlimited length and size — across all ports and TCP streams.
Gateway Anti-Virus
SonicOS provides the ability to configure a sinkhole with black and white lists. DNS sinkholes are effective at detecting and blocking malicious traffic, and used to combat bots and other unwanted traffic. SonicOS also provides the ability to detect DNS tunneling attacks, displays suspicious clients, and allows you to create white lists for DNS tunnel detection.
DNS Security - Basic
DNS Security - Advanced (DNS Filtering)
Safely decrypt and inspect TLS/SSL encrypted traffic on the fly, without proxying, for malware, intrusions and data leakage. The process applies application, URL and content control policies in order to protect against threats hidden inside of encrypted traffic.
Deep Packet TLS/SSL Decryption & Inspection
Identify and control network traffic going to or coming from specific countries to protect against attacks from known or suspected origins of threat activity, or to investigate suspicious traffic originating from the network. Create custom country and Botnet lists to override an incorrect country or Botnet tag associated with an IP address. Eliminate unwanted filtering of IP addresses due to misclassification.
GeoIP UpdGeoIP Country Traffic Identification
SonicOS provides ability to identify and block command and control traffic originating from bots on the local network to IPs and domains that are identified as propagating malware or are known CnC points.
Botnet Command & Control (CnC) Detection & Blocking
Comprehensive Anti-Spam Service (CASS) offers small- to medium-sized businesses comprehensive protection from spam and viruses, with instant deployment over existing SonicWall firewalls.
Comprehensive Anti-Spam Service
SonicWall Capture ATP is a cloud-based, multi-engine sandbox that revolutionizes advanced threat detection. Included with Capture ATP, SonicWall’s patented Real-Time Deep Memory Inspection™ (RTDMI) blocks zero-day and unknown threats at the gateway — even those that hide via encryption or don’t exhibit malicious behavior.
Capture ATP - Sandboxing (Static, RTDMI, Memory, Hypervisor, Emulation)
SonicWall Network Security Manager (NSM), a multi-tenant centralized firewall manager, allows you to centrally manage all firewall operations error-free by adhering to auditable workflows.
NSM (Cloud) Management
Troubleshoot problems, investigate risks and take smart security policy actions for a more adaptive security posture.
(**For TZ80, APSS includes 7-Day Full Reporting and Advanced Analytics that can be extended for 30, 90 or 365 Days)
NSM (Cloud) Reporting -
7 Days Retention

* Available only on TZ 270, 370 and 470 firewall appliances.

Talk to a Security Expert

Ready to expand your protection? Connect with a SonicWall security expert who can help you select the security service or protection suite that’s right for your specific organization.