IMPORTANT
SNS 3.x versions have reached End of Maintenance since July 1st, 2024.
We recommend that you update your SNS firewalls to a version with maintenance to guarantee the protection of your infrastructure.
“License details” tab
This tab displays the current valid license of the appliance to which you are connected.
Buttons
| Search for a new license |
This button is used for finding new licenses or for updating the date of the last check for a license. NOTE In this tab, the button allows searching for licenses for all firewalls in the high availability cluster. |
| Install the new license |
If the firewall has found a license through the button Search for a new license, the button Install the new license will be enabled. By clicking on it, a download will be launched. Confirm or cancel the download. NOTE In this tab, the button allows installing the license for the firewall indicated. |
| Collapse all |
This button allows collapsing all the features in the license. |
| Expand all |
This button allows expanding all the features in the license. |
The table
| Feature |
Indicates the features and options of each feature found on the firewall.
The features are: “Administration”, “Date”, “Flags”, “Global”, “Hardware”, “Limit”, “Network”, “Proxy”, “Service” and “VPN”. The options relating to the features are explained in detail in the next section. |
| In progress (current license) |
Indicates, for each license installed, which options have been enabled for each feature, or the expiry status. A symbol indicates whether a feature is enabled, and another symbol shows that an option has been disabled. Symbols and colors show the difference between an option that is close to expiry (less than 90 days to the expiry date), an expired option and a valid option. |
| New license |
This column appears only if a new license is available but has not yet been installed, and that a reboot would be necessary (in other words, this column will never appear if you have selected in the advanced properties of the General tab the option Install license after it has been downloaded - automatic when possible (no reboot necessary). When a new license is available, this column will set out the new values in comparison with the values of the current license indicated in the column “In progress (current license)”. Symbols and colors indicate improvements or declines in value compared to the values of the current license. If the option has not changes, nothing will be indicated. |
Administration
| Manager |
Administration possible via the web interface. (Default value: 1). |
| Monitor |
Monitoring possible via Stormshield Network REAL-TIME MONITOR (Default value: 1). |
Date
| Antispam |
Deadline for updating DNSRBL spam databases |
| Antivirus |
Deadline for updating ClamAV antivirus databases |
| ExpressWarranty |
Deadline for the ExpressWarranty. This allows limiting the client’s waiting time during the repair of his product. |
| NotAfter |
Expiry date of the license. |
| NotBefore |
Earliest date for using the license |
| ASQ |
Deadline for updating ASQ patterns. |
| SPAMVendor |
Deadline for updating the spam filter heuristic engine. |
| URLFiltering |
Deadline for updating Stormshield Network’s URL filter databases. |
| URLVendor |
Deadline for updating Stormshield Network Extended Web Control URL filter databases. |
| Update |
Deadline for updating the appliance. |
| VirusVendor |
Deadline for updating advanced antivirus databases. |
| VulnBase |
Deadline for updating SEISMO vulnerabilities. |
| Warranty |
Deadline for the warranty. |
Flags
| Clone |
Enables/disables management/presence of the backup partition. (Default value: 1). |
| CustomPattern |
Allows customizing ASQ models. |
| ExpressWarranty |
Express warranty that allows limiting the client’s waiting time during the repair of his product. |
| ExternalLDAP |
Enables or disables the use of an LDAP directory (Default value: 1*) |
| HAState |
Allows defining an active and passive appliance in a high availability cluster. (Master/Slave/None). |
| PKI |
Enables or disables the internal PKI. (Default value: 1) |
| PVS |
Enables or disables SEISMO. (Default value: 0) |
Global
| Comment |
Comments. |
| Id |
Unique identifier |
| Temporary |
Temporary license (as long as the appliance has not been registered). Default value: 1 (factory settings), 0 once the product has been registered. |
| Version |
Version of the license (checks the compatibility of the format for the license/version of the Firmware). The default value is 9. |
Hardware
| CryptCard |
Presence of an optional cryptographic card. (Default value: depends on the model). |
| Networkif |
Maximum number of physical interfaces. (Default value: depends on the model). |
| Raid |
Allows channeling date from one hard disk to another when one of them fails. |
Limit
| Conn |
Maximum number of connections passing through ASQ. (Default value: 0 (= unlimited)). |
| Network |
Maximum number of networks managed by ASQ. (Default value: 0 (= unlimited)). |
| User |
Maximum number of users who can authenticate on the appliance. (Default value: 0 (= unlimited)). |
Network
| HADialup |
Enables or disables the possibility of using dialups to establish high availability links. (Default value: 1). |
| HybridMode |
Enables or disables hybrid mode on interfaces (mix of interfaces, bridges, VLANs, etc). (Default value: 1*). |
| InterfaceRoute |
Allows routing by interface. This option is enabled by default. See the Menu: Configuration > Network > Interfaces / Advanced properties tab/ Bridge: routing by interface (Default value: 1). |
| LBDialup |
Enables or disables load-balancing on dialups. (Default value: 1). |
| QoS |
Enables or disables QoS. (Default value: 1). |
| VLAN |
Enables or disables VLANs (Default value: 1). |
Proxy
| Antispam |
Enables or disables spam filtering via DNSRBL in the proxy. (Default value: 1). |
| Antivirus |
Enables or disables the ClamAV antivirus in the proxy. (Default value: 1). |
| FTPProxy |
Enables or disables the FTP proxy. (Default value: 1**). |
| HTTPProxy |
Enables or disables the http proxy (Default value: 1). |
| ICAPURL |
Enables or disables the ICAP ReqMod. (Default value: 1). |
| ICAPVirus |
Enables or disables the ICAP RespMod. (Default value: 1). |
| IMAPProxy |
Enables or disables the IMAP proxy (which does not exist on UTMs). (Default value: 1). |
| POP3Proxy |
Enables or disables the POP3 proxy. (Default value: 1). |
| SMTPProxy |
Enables or disables the SMTP proxy. (Default value: 1). |
| SpamVendor |
Enables or disables the spam filter heuristic engine. (Default value: 0). |
| URLFiltering |
Enables or disables URL filtering via Stormshield Network’s database in the proxy. (Default value: 1). |
| URLVendor |
Enables or disables URL filtering via Stormshield Network Extended Web Control database in the proxy. (Default value: 0). |
| VirusVendor |
Enables or disables the advanced antivirus in the proxy. (Default value: 0). |
Department
| Authentication |
Enables or disables the user authentication interface. |
| DHCP |
Enables or disables DHCP server/relay service (Default value: 1). |
| DNS |
Enables or disables DNS cache service. (Default value: 1). |
| DynDNS |
Enables or disables the DynDNS client of the DNS update server. |
| Enrolment |
Enables or disables enrolment. (Default value: 1). |
| LDAPBase |
Enables or disables the internal LDAP database (Default value: 1). |
| NTP |
Enables or disables NTP synchronization (Default value: 1). |
| PublicLDAP |
Enables or disables public access to the internal LDAP (Default value: 1*). |
| SNMP |
Enables or disables the SNMP agent. (Default value: 1*). |
VPN
| Anonymous |
Enables or disables the possibility of setting up anonymous tunnels. (Default value: 1*). |
| PPTP |
Enables or disables PPTP tunnels. (Default value: 1*). |
| SSL |
Enables or disables SSL VPN. |
| StrongEnc |
Enables or disables support for strong algorithms for the encryption of IPsec tunnels. (Default value: 1*). |
| Tunnels |
Maximum number of IPsec tunnels. (Default value: 0 (=unlimited)). |
This tab works in the same way as the local license tab.