Share your knowledge!
Informations about Sophos UTM Technology (formerly Astaro Security Gateway)
News Maintenance Release Strict TCP Session Handling enabled by defaultNew installations of UTM 9.706 have strict TCP session handling enabled by default. When updating to 9.706 and strict TCP session handling is not enabled, admins can enable it under Network Protection > Firewall > Advanced. Secure Up2DateUp2Date updates will be downloaded via HTTPS connections. In … Read more
Hello Guys, today I will talk about how to configuring a guest Wifi with a Aruba Mobility Controller and the Sophos hotspot solution. In this example I will using the Sophos SG hotspot solution. With Sophos XG, it’s basically the same. Sophos SG Create a new Interface It’s recommandet, to use a own interface … Read more
Hello guys, I have had a ticket for a long time, which I was finally able to solve. The screenshots are from my test lab. The log entries are partially anonymised. The problem The problem was that a customer wanted to use AD SSO in his secondary location. The secondary location has a RODC. … Read more
Hello Guys, for several months I had the problem that I could not reach my UTM via the dns name from my local network. I had no problems with the IP-address: A ping to utm.***.de and I get the local IP. Interesting… OK, now only captain tcpdump can help us. Let’s see what it looks … Read more
Hello guys, today I will talk about how you can setup a virtual DMZ with a virt. Sophos UTM. The logical network structure For a better understanding, I have create a little grafic with the logical network structure. I am using an Ubuntu server with KVM as hypervisor. My UTM, DMZ and LAN servers only … Read more
Hello guys, today I will talk about how you can setup a site to site VPN with 2 Sophos UTM and dynDNS. The logical network structure For a better understanding I have create a little grafic with the logical network structure. The UTMs stands behind a ISP Router with a private transfer LAN IP and … Read more
News Maintenance Release Remarks System will be reboote Issues Resolved NUTM-12235 [Basesystem, SUM] UTM not accessible through SUM gateway manager NUTM-12234 [Basesystem] Remote Code Execution vulnerability in UTM WebAdmin NUTM-12250 [Wireless] AP Wireless Networks restart continuously-9.704 Download https://download.astaro.com/UTM/v9/up2date/u2d-sys-9.704002-705003.tgz.gpg
Hello guys! today I will tell you how I configured my home server for a virtual Sophos UTM. All configurations in ubuntu can also be used for a virtual Sophos XG. In this article I assume that Ubuntu and virt manager are installed. The following link deals with the basic configuration of virt manager under … Read more
Hello again! Some days ago I talked to a Sophos employee and he founds out that I am the Network Guy and he said that I need to update my recommended hardware for the home edition deployment of the Sophos XG and Sophos UTM Home Edition. Also some of my followers wanted it also, so … Read more
Note WAF: TLS session tickets facilitate clients to speed up repeated TLS handshakes by re-using certain cipher parameters. This re-use of cipher parameters can cause encrypted connections to be less secure by impacting their perfect forward secrecy. To improve the overall security of the product, TLS session tickets are no longer enabled by the WAF. … Read more
