Current HTTP Proxy problems with Sophos UTM

Also getting mails from your UTM regardig “INFO-141] Http proxy not running – restarted”? The problem exists since today and the reason is a broken pattern update for application control. Deactivate your Application Control since the new pattern update will be released. I would suggest to activate it again on Wednesday. Advisory: Sophos UTM: HTTPProxy … Read more

Using different smarthosts in your mail environment

Hello guys! I was asked how to configure multiple domains on a Microsoft Exchange server. The reception is very easy: Add the new domain name to your Exchange server and configure your POPcon to collect the mails or configure the MX DNS entry of this domain to your fixed WAN IP. But what about sending … Read more

How to use 802.1x/mac-auth and dynamic VLAN assignment

Hello guys! Today I want to show you how to secure your edge-switches with 802.1x and mac-authentication fallback in combination with HPE comware-based switches. The 802.1x protocol is used for network access control. For devices like printers, cameras, etc. we will use mac-authentication as a fallback. We will also use dynamic VLAN assignment for the … Read more

Sophos UTM Update 9.502

  Remarks: System will be rebooted Configuration will be upgraded Connected REDs will perform firmware upgrade Connected Wifi APs will perform firmware upgrade   Bugfixes: Fix [NUTM-8127]: [AWS] Link to CloudFormation console during cloudupdate is not working Fix [NUTM-3213]: [Access & Identity] Inconsistent behaviour/state when deleting a user cert Fix [NUTM-3283]: [Access & Identity] IPSec: … Read more

ekahau Site Survey 9.0 released!

ekahau released version 9.0 with new features: High Capacity Planner: The easiest yet the most comprehensive Wi-Fi capacity planning tool Easily set capacity requirements with the new requirement area tool straight from the toolbar – All you need to know is how many devices your network would need to support If needed, you can always … Read more

Virtual Router Redundancy Protocol with Comware Switches

Virtual Router Redundancy Protocol is easy to configure on a comware switch. Each device needs an IP address within the subnet, after this you can configure a virtual-IP for the VLAN-interface: CoreSwitch1: interface Vlan-interface1 ip address 10.0.0.135 255.192.0.0 vrrp vrid 1 virtual-ip 10.0.0.54 vrrp vrid 1 priority 120 CoreSwitch2: interface Vlan-interface1 ip address 10.0.0.136 255.192.0.0 … Read more

Sophos UTM 9.501 Update available

Remarks: System will be rebooted Configuration will be upgraded Connected REDs will perform firmware upgrade Connected Wifi APs will perform firmware upgrade     Bugfixes: Fix [NUTM-6868]: [AWS, REST API] Missing trailing slash in Swagger URLs Fix [NUTM-6908]: [AWS, REST API] [RESTD] Consistent authentication look and feel Fix [NUTM-7173]: [AWS, REST API] [RESTD] Selfmon cannot … Read more

A view at the Sophos Discover 2017 in Lissabon

The Sophos Discover was amazing! Many informations about new products and product features and a perfect organized event! Project “Nemo” (Sophos XG – SFOS) The new upcoming SFOS (Sophos Firewall Operating System) version will get an immense peformance boost through new and optimized alghorithms. Sophos wants to release monthly maintenance updates. At September, Sophos will … Read more

Spanning-Tree between HP Comware and Cisco

In the past, I had many problems with a heterogene infrastructure containing HPE 5000 Comware devices and Cisco Catalyst switches. I couldn’t get Multiple Spanning-Tree (MSTP) on the run (same revision number, same case-sensitive region-name). So we decided to go on with Per VLAN Rapid Spanning-Tree. But this also didn’t work, also no other VLANs that … Read more

Sophos UTM 9.5 released!

Sophos released the new major update 9.5 for the UTM. The most wanted feature “Let’s Encrypt integration” will probably implemented in 9.6. Major features: Sophos Sandstorm Enhancements Datacenter location selection option for Sophos Sandstorm without relying on DNS based location detection Sandstorm activity reporting expanded to include email attachments for improved visibility Scan exceptions for Sophos … Read more