Sophos UTM 9.601 update released

Note WAF: TLS session tickets facilitate clients to speed up repeated TLS handshakes by re-using certain cipher parameters. This re-use of cipher parameters can cause encrypted connections to be less secure by impacting their perfect forward secrecy. To improve the overall security of the product, TLS session tickets are no longer enabled by the WAF. … Read more

Sophos UTM 9.6 update released

What’s new in UTM 9.6?   ATP: New Advanced Threat Protection Library Better performance and protection Certificates: Let’s Encrypt Integration Generate and renew Let’s Encrypt certificates from within UTM Generated certificates can be used in all UTM components RED: Unified RED Firmware Better 3G/4G Support Sandstorm: Manual File Submission Allows an admin to upload a … Read more

Guest post: FritzBox and VoIP-Passthrough

Dear networkguys! Luca, one of my follower, wants to publish a guest post. He describes the use of an AVM FritzBox to be used as: WLAN for internal use WLAN for guest use Smart home central VoIP-gateway Access from Fritz!Apps I will keep the tutorial in german language, I think FritzBoxes will be only used … Read more

Webproxy exceptions for Grand Theft Auto

GTA has problems while updating through a Sophos UTM/XG webproxy. Thanks to Phillips work, here is the list of the exceptions: ^https?://[A-Za-z0-9.-]*\.patches\.rockstargames\.com/ ^https?://[A-Za-z0-9.-]*\.prod\.ros.\.rockstargames\.com/ ^https?://[A-Za-z0-9.-]*\.device-metrics-us\.amazon\.com/ ^https?://[A-Za-z0-9.-]*\.cdn\.edgecast\.steamstatic\.com/ ^https?://[A-Za-z0-9.-]*\.master\.mta-v\.net ^https?://[A-Za-z0-9.-]*\.dsp\.mp\.microsoft\.com/ ^https?://[A-Za-z0-9.-]*\.mta-v\.net/ ^https?://[A-Za-z0-9.-]*\.rockstargames\.com/ ^https?://[A-Za-z0-9.-]*\.steamcommunity-a\.akamaihd\.net/ ^https?://[A-Za-z0-9.-]*\.steampowered\.com/ ^https?://[A-Za-z0-9.-]*\.google-analytics\.com/ ^https?://[A-Za-z0-9.-]*\.g\.doubleclick\.net/ ^https?://[A-Za-z0-9.-]*192\.81\.241\.100/ ^https?://[A-Za-z0-9.-]*\.akamaihd\.net/ ^https?://[A-Za-z0-9.-]*52\.95\.112\.20/ happy shooting! 🙂

Sophos UTM Update 9.508-10 released!

  Quick after the 9.508 release, Sophos released another update for the UTM system. Your sysstem will be rebooted and your access points will get a new firmware. HTTP Download FTP Download Bugfixes NUTM-8739 [Access & Identity] Argos segfault and coredump after update to v9.502 NUTM-9164 [Access & Identity] SSLVPN installation packages fail to copy … Read more

Sophos UTM Up2Date 9.508 Released

News Maintenance Release Download-Links FTP HTTP Remarks System will be rebooted Configuration will be upgraded Connected APs will perform firmware upgrade Bugfixes NUTM-8739 [Access & Identity] Argos segfault and coredump after update to v9.502 NUTM-9164 [Access & Identity] SSLVPN installation packages fail to copy user profile during installation NUTM-9344 [Access & Identity] All users are … Read more

Sophos UTM Update 9.506-2 released

Sophos released a new maintenance release for the UTM. This time many bugs are getting fixed. Access Points and REDs are also getting a new firmware. Download HTTP Download FTP   Bugfixes: NUTM-8651 [AWS] AWS Permission for “Import Via Amazon Credentials” NUTM-7678 [Access & Identity] Pluto dies with coredump at L2TP connections NUTM-8211 [Access & … Read more

Sophos released update 9.504 and 9.505 for the UTM

Hey guys! Sophos released two new updates for the UTM: 9.504 (ftp://ftp.astaro.com/UTM/v9/up2date/u2d-sys-9.503003-504001.tgz.gpg) Bugfixes: NUTM-8851 [Basesystem] System doesn’t boot if Posgtresql database cannot start NUTM-7240 [RED] RED 50 loosing ARP entries of internal machines NUTM-8782 [RED] RED10, RED15, RED50: Update OpenSSL and TCPdump to most current version NUTM-8858 [RED] DNSMasq vulnerabilities 9.505 (ftp://ftp.astaro.com/UTM/v9/up2date/u2d-sys-9.504001-505004.tgz.gpg) Bugfixes: NUTM-8984 [RED] … Read more

Current HTTP Proxy problems with Sophos UTM

Also getting mails from your UTM regardig “INFO-141] Http proxy not running – restarted”? The problem exists since today and the reason is a broken pattern update for application control. Deactivate your Application Control since the new pattern update will be released. I would suggest to activate it again on Wednesday. Advisory: Sophos UTM: HTTPProxy … Read more

Sophos UTM Update 9.502

  Remarks: System will be rebooted Configuration will be upgraded Connected REDs will perform firmware upgrade Connected Wifi APs will perform firmware upgrade   Bugfixes: Fix [NUTM-8127]: [AWS] Link to CloudFormation console during cloudupdate is not working Fix [NUTM-3213]: [Access & Identity] Inconsistent behaviour/state when deleting a user cert Fix [NUTM-3283]: [Access & Identity] IPSec: … Read more