Install Sophos XG from USB Stick

Some years ago, I wrote an article about installing Sophos UTM with an USB stick. Now it’s time for XG 😉 First, I had a problem creating the stick with Rufus. The decive couldn’t boot from the usb device: Starting Firmware Installation Failed getting ISO disk press y to reboot than I tried the DD … Read moreInstall Sophos XG from USB Stick

How to update Sophos XG firmware

Hello networkguys! Today I want to show you how to successful update the XG firewall. You can check your status directly after your login on the dashboard: at first step, create a local backup file and download it to your computer: you can download the new firmware at the Sophos Portal. If you have a … Read moreHow to update Sophos XG firmware

Webproxy exceptions for Grand Theft Auto

GTA has problems while updating through a Sophos UTM/XG webproxy. Thanks to Phillips work, here is the list of the exceptions: ^https?://[A-Za-z0-9.-]*\.patches\.rockstargames\.com/ ^https?://[A-Za-z0-9.-]*\.prod\.ros.\.rockstargames\.com/ ^https?://[A-Za-z0-9.-]*\.device-metrics-us\.amazon\.com/ ^https?://[A-Za-z0-9.-]*\.cdn\.edgecast\.steamstatic\.com/ ^https?://[A-Za-z0-9.-]*\.master\.mta-v\.net ^https?://[A-Za-z0-9.-]*\.dsp\.mp\.microsoft\.com/ ^https?://[A-Za-z0-9.-]*\.mta-v\.net/ ^https?://[A-Za-z0-9.-]*\.rockstargames\.com/ ^https?://[A-Za-z0-9.-]*\.steamcommunity-a\.akamaihd\.net/ ^https?://[A-Za-z0-9.-]*\.steampowered\.com/ ^https?://[A-Za-z0-9.-]*\.google-analytics\.com/ ^https?://[A-Za-z0-9.-]*\.g\.doubleclick\.net/ ^https?://[A-Za-z0-9.-]*192\.81\.241\.100/ ^https?://[A-Za-z0-9.-]*\.akamaihd\.net/ ^https?://[A-Za-z0-9.-]*52\.95\.112\.20/ happy shooting! 🙂

Sophos XG – SFOS 17.0.0 GA Released

First, I’m sorry that the blog “fallen asleep”. I was on holiday and have currently many other business projects. I will blog more in the next time and will write a big overview of the new SFOS v17 release. We will start trainings and start selling XG devices soon in my company, so I think … Read moreSophos XG – SFOS 17.0.0 GA Released

A view at the Sophos Discover 2017 in Lissabon

The Sophos Discover was amazing! Many informations about new products and product features and a perfect organized event! Project “Nemo” (Sophos XG – SFOS) The new upcoming SFOS (Sophos Firewall Operating System) version will get an immense peformance boost through new and optimized alghorithms. Sophos wants to release monthly maintenance updates. At September, Sophos will … Read moreA view at the Sophos Discover 2017 in Lissabon

Sophos SSL VPN Problems with Kaspersky/TrendMicro Anti-Virus

In the last weeks, my network team and I tried to solve a problem at one of my customers regarding SSL VPN problems. The customer keeps connected (green traffic light on) but lost the network connection to his servers several times. Only a manual vpn-reconnect could solve the problem. UTM logs and client-logs couldn’t help … Read moreSophos SSL VPN Problems with Kaspersky/TrendMicro Anti-Virus

Sophos Hardware Refresh Program

The upgrade paths for the hardware refresh programs are not public. I want to show you what paths you can go. Here are some facts: The Hardware Refresh Program is for customers who want to change from UTM/ASG to SG hardware or want to buy a higher SG model SG  and XG hardware are identical. SG has … Read moreSophos Hardware Refresh Program

News from the Sophos Partner Roadshow

Advanced Zero-Day-Protection The Sophos Sandstorm (“Breach Detection Platform”) is a dynamic-cloud-technology for scanning files on different OS and browser versions to detect zero day malware. The product FireEye for example is a on-premise solution for this. Sophos centralized this into a cloud-system. The popular zero day malware “Locky” is a normal executable or macro script … Read moreNews from the Sophos Partner Roadshow

Comparing Windows Kerberos and NTLM Authentication Protocols

I found a very good article about the protocols you can use with your proxy (Sophos UTM or Sophos XG) on windowsitpro.com: What are the main feature differences between the Windows Kerberos and NT LAN Manager (NTLM) authentication protocols? Why is the Kerberos protocol generally considered a better authentication option than the NTLM protocol? NTLM … Read moreComparing Windows Kerberos and NTLM Authentication Protocols