Sophos UTM VLAN Interfaces & Routing on a stick

In May I posted a tutorial for running a “router on a stick” with Cisco Router, Switch and HP Switch. Today I will show you to replace the Cisco Router with a Sophos UTM to route between different VLANs.   First we will connect a Sophos UTM interface (in our example eth3) with our switch … Read more

Sophos UTM 9.1 Final Release is here!

After the soft-release here comes the final release of Sophos UTM 9.1: ftp.astaro.de You can update from 9.006-05 to 9.100-16. People which installed the soft-release 9.100-8 will get an email some days ago like me to update from 9.100-8 to 9.100-16:   here are the official changelogs for 9.100-16: Official Up2Date Description: Remarks * System … Read more

Updating Sophos UTM via shell

Some of my customers have problems uploading big files via WebAdmin to update to the newest version. For myself I always download the files directly via shell to the update-folder like this: Activate shell access and configure a root and a loginuser password:   after this u can use PuTTY to connect to your UTM … Read more

Sophos UTM 9.1 available!

You can download the update from 9.006005 to 9.100008 here: ftp.astaro.de Up2Date-Informations News Major Features Endpoint: Web Protection for UTM Endpoint Network/RED/Wifi: Support for MAC Address Filtering RED: Offline Provisioning VPN: SSL VPN Support for iOS and Android Wifi: Wireless Repeating and Bridging for AP50   Other Features WebAdmin: Replace “Traffic Lights” with Toggle-Switch Design WebAdmin: … Read more

Using a VDSL line with Sophos UTM

In this example I will show you how to use VDSL on a Sophos UTM from Deutsche Telekom. It works with home and business lines.  To use PPPoE for VDSL, the network traffic needs to be tagged with VLAN tag 7 in the Deutsche Telekom infrastucture. We will use the ALLNET ALL126AS2 as the external modem. … Read more

Finally my own Sophos UTM

NEW post available here   Finally I got my own Hardware for the Sophos UTM Home license. Thanks to my colleagues at work for finding that perfect fitting hardware. I would prefer a passive cooled mainboard with at least two ethernet NICs (internal LAN and internet uplink). You can use any ITX cases but It … Read more

Enabling World of Warcraft Installer/Updater

Behind a Sophos UTM or Astaro ASG, the World of Warcrafter Installer or Updater brings always the error message BLZPTS0000J at start. In most cases this is a problem with the http-proxy. So if you want to enable the Blizzard Updater to connect, you need to skip AntiVirus for the following URLs: ^https?://[A-Za-z0-9.-]*\.battle\.net/ ^https?://[A-Za-z0-9.-]*\.edgesuite\.net/ ^https?://[A-Za-z0-9.-]*\.blizzard\.com/ … Read more

Using parent proxies with Sophos UTM or Astaro ASG

One of my customers has several attached branch offices connected via MPLS. Branch Office UK is using the webproxy from the german location (central ASG cluster). They had problems using www.google.co.uk or other websites with geo-IP-filters so we need a the usage of parent proxies based on some URLs. To do this, just use web … Read more