Web Protection – New categorization of websites

If you have a website that is in case of false positive categorized as “Malicious Site” or a wrong category, you can open a support case by writing an email to sites@mcafee.com or via the website https://www.trustedsource.org/en/feedback/url from McAfee. Sophos UTM is also using this global database. In Sophos UTM 9.2 you have the ability to overwrite … Read more

Sophos UTM 9.2 soft-release available!

Major Features Web: New UI policy model Mail: SPX encryption support Mail: DLP support Network: Botnet/C&C traffic detection and blocking Network: Major IPS performance improvements Authentication: Dual-factor authentication with OATH TOTP WAF: Authentication support Smaller Features Web: AD SSO in transparent mode Web: Warn action Web: Transparent HTTPS filtering w/o full SSL scanning Web: URL … Read more

UTM-News from Sophos Partner Roadshow

Back from Sophos Partner Roadshow with a lot of new informations! As I told, the Sophos UTM version 9.2 will be soft-released today. Keep a look at the Sophos FTP server. The version 9.2 is available until november and has the longest beta-phase in the history of this product (4 month). You are now asking … Read more

Sophos UTM 9.109-1 (Soft-release)

Version 9.109-1 is available via soft-release. You can download it here. Currently there is no official post in the Sophos User Bulletin Board. Here are the change logs: News Maintenance Update Fix Kernel Memory Leak (high memory allocation on TCP stack) Remarks System will be rebooted Bugfixes No bugfixes in this release  

VDSL with Sophos UTM and Zyxel Modem

I tried another VDSL modem to connect a Sophos UTM with a VDSL line from Deutsche Telekom. I tried the Zyxel device P-870H-53A v2 with a builtin 4-port switch (perfect for our high availability cluster). Configure the VDSL interface wiht PPPoE and your provider login-data. Keep in mind to deactivate the VDSL option because the Zyxel modem … Read more

Link Aggregation with Cisco ASA

Interesting project that I got some days ago: I need to connect a Cisco ASA redundantly to a HP Switch Switch cluster (clustered with IRF protocol) and VLAN tag support. I configured a bridge-aggregation interface at the HP 5920AF-24XG like this (VLANs were already configured): interface Bridge-Aggregation1 description Link to Cisco ASA interface Ten-GigabitEthernet1/0/8 port link-aggregation … Read more

Using Sophos Access Points behind a RED

In case you are using split-tunnel with your Sophos UTM and an Access Point behind a RED, you need to configure some additional parameters. The Access Point always wants to connect to the WLAN Controller address 1.2.3.4 so you need to add this host to the split-network area:   after this the RED will reboot … Read more