Security Notice: SonicWall Global VPN Client DLL Search Order Hijacking via Application Installer

If you or any of your clients use Sonicwall Global VPN Client, would be a good time to make sure they are not using an vulnerable version of the installer.

Stay safe out there!

I hate to admit it but I pulled Sonicwall devices out of most locations. They were too expensive, and small issues kept creeping in. Did not feel they lived up to the reputation they had 20 years ago.  But would be curious to what people here recommend for SMSO edge devices at a reasonable price for small organizations?  What are you all recommending?

We are still a Sonicwall shop and have had good success with them. They definitely took a downturn when Dell bought them, but they bounced back pretty well after they got back on their own. Their TZ series is what we typically recommend to most SMBs.

I am also curious what edge devices people are using.

I appreciate you taking the time to share this. Though we do not use Sonicwall ourselves, a good friend of mine works for a company who does have a few to support. Forwarded on to him. 

We are using Fortinet firewalls internally and they have worked well. In my area there has been a big push recently for Cisco Meraki. 

No problem, @stlshark . Thanks for sharing!

We know a lot of others using Fortinet. Our biggest complaint with SW is the lack of a central management portal. Well, the lack of one that isn’t absurdly expensive, at least. Does Fortinet have any kind of centralized management portal?

We have a few clients on Meraki, and we like them. But they are expensive!

We are only using them internally, but they do have Forticloud which allows you to manage all of your devices from one place. Overall their ecosystem is pretty nice, but I think Meraki is still the better option overall. 

Thanks. I have not used them since Dell bought them and have not followed them since, so was no aware that they were back on their own.  I will check them out again.  Appreciate the comment. 

Thanks for sharing. I do value these comments and articles they are great for information sharing. We aren’t a Somicwall house but useful to know in case of any legacy clients still with kit outside of our standard stack. 

Not a SonicWall house but have a couple of clients using their kit but we are actively trying to steer them to a different product, the knowledge required for properly and securely managing them seems to be a bit rare and the cost to boot is too much in most cases

We were SonicWall at my old MSP but moved of to Sophos years ago. there was a lot I liked and the VPN was one of them

The sophos VPN or the sonicwall one?