Sophos UTM 9.601 update released

Note WAF: TLS session tickets facilitate clients to speed up repeated TLS handshakes by re-using certain cipher parameters. This re-use of cipher parameters can cause encrypted connections to be less secure by impacting their perfect forward secrecy. To improve the overall security of the product, TLS session tickets are no longer enabled by the WAF. … Read more

Merry christmas and a happy new year!

First, thanks to all of my visitors and followers! As you can see, I didn’t had much time this year to post many tutorials and news. Besides I started an own company and this took a lot of time. My “New Year’s resolution” is to write more tutorials/posts and also get in more detail of WiFi … Read more

WLAN with 802.1x Radius/NPS Authentication

Good day everyone! If you want/have to implement wireless networks in companies you need to secure them more than your home WLAN. In this case, you need to use a radius server for this (so called WPA-Enterprise or WPA2-Enterprise Authentication with Protected EAP. I will use a Microsoft NPS (network policy server) on a Microsoft … Read more

Easy extend your IP-subnet

Hello guys! Sometimes a /24 subnet is running out of free usable IP addresses and we need to extend the network. I want to show you how easy it is and what you have to keep in mind. First we need to plan our new network. The easiest way is to extend your current network, … Read more

Sophos XG v17.5 released

What’s New in XG Firewall v17.5 Here’s a quick overview of the key new features in v17.5. For a more detailed description please refer to: Sophos-XG-firewall-v17.5-whats-new.pdf   Lateral Movement Protection Lateral Movement Protection extends our Security Heartbeat automated threat isolation to prevent any threat from moving laterally or spreading across the network, even on the same … Read more

Sophos UTM 9.6 update released

What’s new in UTM 9.6?   ATP: New Advanced Threat Protection Library Better performance and protection Certificates: Let’s Encrypt Integration Generate and renew Let’s Encrypt certificates from within UTM Generated certificates can be used in all UTM components RED: Unified RED Firmware Better 3G/4G Support Sandstorm: Manual File Submission Allows an admin to upload a … Read more

WiFi Alliance and their new naming-standards

The WiFi alliance is planing to show the WLAN standards as numbers, so people can easily recognize the technology. My first thoughts: “WAT?” So people can say “hey my new iPhone can ROCK Wi-Fi Generation 5” instead of “hey I can use 802.11ac wlan access points”. They are also showing version 6 for the new … Read more

Sophos UTM 9.6 is coming soon!

Sophos will release Version 9.6 soon. The following main features will be available: Sandstorm: Reporting enhancements and manual file submission WAF: “Let’s Encrypt” certificate support and page customization enhancements RED: Unified firmware with 4G LTE support Email: Upgraded S/MIME email encryption ATP: New and improved Advanced Threat Protection engine Let’s Encrypt needs to be enabled … Read more

Are your interested in WLAN topics?

In my profession I’m working with WLAN since 15 years now. I professionalized this topic in the last 7 years. I’m designing, planing and creating big wireless infrastructures (primarily with Cisco Aironet). So I’m also doing WLAN site surveys with ekahau Site Survey in different places like office-complexes, warehouses, clean rooms, industry areas and even in … Read more

Sophos released the new UTM maintenance update 9.510-5

Download Version 9.509-3 to 9.510-5 Download Version 9.510-4 to 9.510-5   Connected APs will perform firmware upgrade Connected REDs will perform firmware upgrade   Bugfixes: NUTM-8273 [Basesystem] Inconsistent reporting data in hot standby environment NUTM-9089 [Basesystem] ulogd restarting randomly NUTM-9423 [Basesystem] Missing DMI info or missing WiFi card should turn status LED red for desktop refresh … Read more