SONICWALL Network Security Manager User Guide

Capacity Requirements
The capacity requirements for an NSM On-Premises deployment vary based on the platform used. Refer to the table below for platform details and recommended configurations.

Platform	Number of Firewalls	Supported Versions	Recommended Configuration
VMware	1-500	ESXi 7.0, 8.0	4 Cores, 24 GB RAM – 8 Cores, 48 GB RAM
Hyper-V	500-3000	Windows 2019, 2022	8 Cores, 48 GB RAM – 16 Cores, 56 GB RAM
KVM	1-500	Linux Kernel 5.15 LTS	4 Cores, 24 GB RAM – 8 Cores, 48 GB RAM
Azure	1-500	Standard_D4_v2, Standard_D5_v2	8 Cores, 28 GiB RAM – 16 Cores, 56 GiB RAM

New Features

Firewall Auto Synchronization: Automatically synchronizes firewall configuration modifications.

Model-Specific Templates: Helps deploy configurations on multiple firewalls reliably.
Management of TZ80: Supports complete management of TZ80 device with new license model.

Firewall Diagnostic Features: Includes various diagnostic tools for network settings, IP reputation, URL reputation, and switch diagnostics.

FAQ

Q: How can I upgrade my NSM to version 2.6.0?
A: Follow the upgrade path based on your current build mentioned in the table provided in the user manual.
Q: Which browser is recommended for optimal performance?
A: Google Chrome is preferred for real-time graphics display on the Dashboard.

Q: What are the key features of NSM 2.6.0 On-Premises?
A: The key features include Firewall Auto Synchronization, Model-Specific Templates, TZ80 device management, and Firewall Diagnostic Features.

SonicWall Network Security Manager 2.6
On-Premises
Release Notes
These release notes provide information about the SonicWall Network Security Manager (NSM) 2.6 On-premises release.

Versions:

Version 2.6.0 On-Premises

Version 2.6.0 On-Premises
December 2024

Important

Refer to the knowledge base article, How to Upgrade SonicCore and NSM in Closed Network for detailed instructions on upgrading NSM in closed network environment.
Refer to the knowledge base article, Upgrade NSM on-prem via System Update for detailed instructions on a system upgrade. Prior to update, you need to create a system backup of the NSM on-premises system in case you need to roll back to the prior version. Refer to Backup and Restore an NSM On-Prem System for detailed instructions.

Refer to knowledge base article, How to Upgrade On-Prem Network Security Manager firmware for detailed instructions on upgrading NSM firmware using SWI files.

Compatibility and Installation Notes

Most popular browsers are supported, but Google Chrome is preferred for the real-time graphics display on the Dashboard.

A MySonicWall account is required.

Capacity Requirements: The capacity requirements for an NSM On-Premises deployment have changed:

Platform	Platform Details	Number of Firewalls	Recommended Configuration
VMware	Supported versions:	1-500	4 Cores, 24 GB RAM
	ESXi 7.0, 8.0	500-3000	8 Cores, 48 GB RAM
Hyper-V	Windows 2019, 2022	1-500	4 Cores, 24 GB RAM
		500-3000	8 Cores, 48 GB RAM
KVM	Linux Kernel 5.15 LTS	1-500	4 Cores, 24 GB RAM
		500-3000	8 Cores, 48 GB RAM
Azure	Standard_D4_v2	1-500	8 Cores, 28 GiB RAM
	Standard_D5_v2	500-3000	16 Cores, 56 GiB RAM

Upgrade Instructions

NSM can be upgraded on platforms VMWare, Hyper-V, KVM and Azure using system update or .swi image. You must be at the correct version of NSM before upgrading to NSM 2.6.0. Refer to the table below before attempting to upgrade to NSM 2.6.0.

Current Build Upgrade Path to 2.6.0

NSM 2.4.4-R7 2.4.4-R7 > 2.5.0 > 2.5.0 HF1 > 2.6.0
NSM 2.5.0 2.5.0 > 2.5.0 HF1 > 2.6.0
NSM 2.5.0 HF1 2.5.0 HF1 > 2.6.0

What’s New
This release provides the following new features, usability enhancements and fixes for previously reported issues

Firewall Auto Synchronization: The NSM automatically synchronizes firewall configuration modifications performed from the local UI. This capability is turned off by default but can be enabled at the tenant level. Please refer to the NSM On-Premises Administration guide to understand the complete feature workflow.
Firewall Model-Specific Templates: Model-specific templates help administrators reliably deploy the same configuration on a fleet of firewalls.
Management of TZ80: The NSM On-premises 2.6.0 release supports the complete firewall management capability of the TZ80 device, including support for the new license model of TZ80 and firewall configuration.
Firewall Diagnostic Features: Starting NSM 2.6.0, users can use firewall diagnostic tools such as Check Network Settings and Connection TopX, the ability to look up domain or IP address (MX and Banner), check for IP reputation using GRID Check, check for URL reputation and perform Switch Diagnostics are available in the firewall view.
2FA Authentication for Super Admin: NSM On-premises 2.6.0 introduces 2FA authentication support for super admin users using email-based OTP.
Usability Enhancements: To better organize the NSM menu options and make NSM terminology intuitive, we have made the following changes in this release.
Terminology update:
The firewall’s On and Off status has been changed to Online and Offline in the NSM Dashboard.
The firewall’s Unmanaged and Managed status is changed to Out of Sync and In Sync status in the NSM Dashboard and Inventory.

The firewall’s Unassigned status changed to the Device group’s unassigned status in the NSM Dashboard and Inventory.

Resolved Issues

Issue ID Description

NSM-26754 NSM Firewall Group configuration view shows the following error: “Internal Server Error”.
NSM-26334 IP column no longer appears for ZT units following the upgrade to NSM 2.5.0.
NSM-26254 Firewall Scheduled Backup for “All Devices” is only processing for a maximum limit of 200 devices.

NSM-26253 NSM 2.5.0 unable to edit user role when clicking the ‘save’ button.
NSM-26146 NSM On-Prem When the firewall is down, NSM still shows the firewall up, and the customer is not alerted.
NSM-26057 The dashboard Map shows firewall locations incorrectly, but the Firewall Inventory map shows them correctly.

NSM-24566 Static Network Configuration becomes DHCP enabled when exiting safe mode.
NSM-23575 Upgrading On-Prem to 2.3.5-1 via SWI fails for large configurations.

Known Issues
Issue ID Description

NSM-27211 The session is expiring while updating the time and date.
NSM-27204 Restarting NSM throws an internal server error (proceeds with the reboot).
NSM-26960 The large backup file is not automatically copied to the SCP server when creating an on-demand backup.

Additional References
NSM-25574, NSM-25896, NSM-26075, NSM-26204, NSM-26821.

SonicWall Support
Technical support is available to customers who have purchased SonicWall products with a valid maintenance contract.
The Support Portal provides self-help tools you can use to solve problems quickly and independently, 24 hours a day, 365 days a year.
The Support Portal enables you to:

View Knowledge Base articles and Technical Documentation

View and participate in the Community Forum discussions
View Video Tutorials
Access

Learn about SonicWall Professional Services
Review SonicWall Support services and warranty information
Register at SonicWall University for training and certification

About This Document

NOTE: A NOTE icon indicates supporting information.
IMPORTANT: An IMPORTANT icon indicates supporting information.
TIP: A TIP icon indicates helpful information.
CAUTION: A CAUTION icon indicates potential damage to hardware or loss of data if instructions are not followed.
WARNING: A WARNING icon indicates a potential for property damage, personal injury, or death.

Network Security Manager Release Notes
Updated – December 2024
232-006225-00 Rev A
Copyright © 2024 SonicWall Inc. All rights reserved.
The information in this document is provided in connection with SonicWall and/or its affiliates’ products. No license, express or implied, by estoppel or otherwise, to any intellectual property right is granted by this document or in connection with the sale of products. EXCEPT AS SET FORTH IN THE TERMS AND CONDITIONS AS SPECIFIED IN THE LICENSE AGREEMENT FOR THIS PRODUCT, SONICWALL AND/OR ITS AFFILIATES ASSUME NO LIABILITY WHATSOEVER AND DISCLAIMS ANY EXPRESS, IMPLIED OR STATUTORY WARRANTY RELATING TO ITS PRODUCTS INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTY OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, OR NON-INFRINGEMENT. IN NO EVENT SHALL SONICWALL AND/OR ITS AFFILIATES BE LIABLE FOR ANY DIRECT, INDIRECT, CONSEQUENTIAL, PUNITIVE, SPECIAL OR INCIDENTAL DAMAGES (INCLUDING, WITHOUT LIMITATION, DAMAGES FOR LOSS OF PROFITS, BUSINESS INTERRUPTION OR LOSS OF INFORMATION) ARISING OUT OF THE USE OR INABILITY TO USE THIS DOCUMENT, EVEN IF SONICWALL AND/OR ITS AFFILIATES HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. SonicWall and/or its affiliates make no representations or warranties with respect to the accuracy or completeness of the contents of this document and reserves the right to make changes to specifications and product descriptions at any time without notice. and/or its affiliates do not make any commitment to update the information contained in this document.
For more information, visit https://www.sonicwall.com/legal.

End User Product Agreement
To view the SonicWall End User Product Agreement, go to: https://www.sonicwall.com/legal/end-user-product-agreements/.

Open Source Code
SonicWall Inc. is able to provide a machine-readable copy of open source code with restrictive licenses such as GPL, LGPL, AGPL when applicable per license requirements. To obtain a complete machine-readable copy, send your written requests, along with certified check or money order in the amount of USD 25.00 payable to “SonicWall Inc.”, to:

General Public License Source Code Request
Attn: Jennifer Anderson
1033 McCarthy Blvd
Milpitas, CA 95035

Network Security Manager Release Notes
SonicWall Network Security Manager 2.6 On-Premises

Documents / Resources

SONICWALL Network Security Manager [pdf] User Guide
Network Security Manager, Security Manager, Manager

References

User Manual

SONICWALL Network Security Manager

Product Usage Instructions

Compatibility and Installation Notes

Upgrade Instructions

About This Document

Documents / Resources

References

Leave a comment

Cancel reply