Share your knowledge!
Informations about Sophos UTM Technology (formerly Astaro Security Gateway)
News Maintenance Release Security Release Remarks System will be rebooted Configuration will be upgraded Issues Resolved NUTM-12646 [Access & Identity] User E-Mail addresses won’t be synced properly NUTM-12873 [Access & Identity] GUI issue with selecting Inbound/Outbound ipsec debug option NUTM-12904 [Access & Identity] DUO authentication fails back to AD with success NUTM-12434 [Basesystem] Yukon, Canada … Read more
News Maintenance release Security release Remarks System will be rebooted Configuration will be upgraded Issues resolved NUTM-12550 [Access & Identity] Replace deprecated option in SSLVPN client config NUTM-12310 [Email] SPF checks incorrectly occurring when multiple upstream hosts are configured in an availability group NUTM-12672 [Logging] IPFIX does not switch source and destination ports between inbound and outbound … Read more
Hello guys, today I want to show you how to find out the PPPoE password on a Sophos SG/XG if you don’t have it documented. This only works if the SG/XG itself establishes the connection. Start a TCPDump on the hardware interface via the shell. In this example eth1. tcpdump -i eth1 Then press the … Read more
News Maintenance Release/ Security Release Remarks System will be rebooted Configuration will be upgraded Issues Resolved NUTM-12780 Upgrade Exim to v4.94.2 – 9.706 Download https://download.astaro.com/UTM/v9/up2date/u2d-sys-9.706008-706009.tgz.gpg
News Maintenance Release Strict TCP Session Handling enabled by defaultNew installations of UTM 9.706 have strict TCP session handling enabled by default. When updating to 9.706 and strict TCP session handling is not enabled, admins can enable it under Network Protection > Firewall > Advanced. Secure Up2DateUp2Date updates will be downloaded via HTTPS connections. In … Read more
Hello Guys, today I will talk about how to configuring a guest Wifi with a Aruba Mobility Controller and the Sophos hotspot solution. In this example I will using the Sophos SG hotspot solution. With Sophos XG, it’s basically the same. Sophos SG Create a new Interface It’s recommandet, to use a own interface … Read more
Hello guys, I have had a ticket for a long time, which I was finally able to solve. The screenshots are from my test lab. The log entries are partially anonymised. The problem The problem was that a customer wanted to use AD SSO in his secondary location. The secondary location has a RODC. … Read more
Hello Guys, for several months I had the problem that I could not reach my UTM via the dns name from my local network. I had no problems with the IP-address: A ping to utm.***.de and I get the local IP. Interesting… OK, now only captain tcpdump can help us. Let’s see what it looks … Read more
Hello guys, today I will talk about how you can setup a virtual DMZ with a virt. Sophos UTM. The logical network structure For a better understanding, I have create a little grafic with the logical network structure. I am using an Ubuntu server with KVM as hypervisor. My UTM, DMZ and LAN servers only … Read more
Hello guys, today I will talk about how you can setup a site to site VPN with 2 Sophos UTM and dynDNS. The logical network structure For a better understanding I have create a little grafic with the logical network structure. The UTMs stands behind a ISP Router with a private transfer LAN IP and … Read more
