Home Cyber Security Sophos Firewall v20 is now accessible – Sophos Information

Sophos Firewall v20 is now accessible – Sophos Information

Sophos Firewall v20 is now accessible – Sophos Information


We’re extraordinarily happy to announce that Sophos Firewall v20 is now accessible. This newest launch contains an revolutionary new energetic risk response functionality, a number of networking enhancements, added help for securing your distant workforce, and lots of of your top-requested options.

Sophos Firewall v20 is a free improve for all licensed Sophos Firewall clients.

Watch the video under for an outline of what’s new, obtain the What’s New PDF, or learn on for the total particulars and deep-dive demo movies.

Lively Risk Response

Extending Synchronized Safety to MDR and XDR gives a direct feed for safety analysts to share energetic risk info with the firewall, enabling it to mechanically reply to energetic threats with out creating any firewall guidelines.

Dynamic Risk Feeds introduces a brand new risk feed API framework that’s simply extensible. It allows risk intelligence to be shared by the Sophos X-Ops workforce, different Sophos merchandise like MDR and XDR, and in the end third-party risk feeds sooner or later.

Synchronized Safety extends the identical Purple Heartbeat, automated response that Sophos Firewall has all the time had and applies it to MDR/XDR recognized threats. This ensures compromised hosts aren’t in a position to transfer laterally or talk out, whereas particulars together with host, consumer, and course of are available for follow-up. Synchronized Safety has additionally been enhanced with added scalability and diminished false lacking heartbeats for units which might be in sleep or hibernation states.

Watch the Lively Risk Response demo video.

Distant employee safety and SASE

ZTNA gateway integration makes ZTNA deployments even simpler by integrating a ZTNA gateway immediately into the firewall. This implies any group that should present distant entry to purposes hosted behind the firewall doesn’t must deploy a separate gateway on a VM. They will merely reap the benefits of the gateway built-in into their firewall. When mixed with our single-agent deployment on the distant system, ZTNA couldn’t probably get any simpler. It’s actually zero-touch zero belief.

Third-party SD-WAN integration makes it straightforward to onramp SD-WAN site visitors onto Cloudflare, Akami, or Azure spine networks to reap the benefits of their huge infrastructure, attain, and networking and safety companies.

Sophos DNS Safety is our new cloud-delivered net safety service that shall be accessible individually in early entry very quickly. It gives a brand new Sophos-hosted area title decision service (DNS) with compliance and security measures which might be absolutely supported by Sophos Firewall. This service gives an added layer of net safety, stopping entry to identified compromised or malicious domains throughout all ports, protocols, or purposes – each unencrypted and encrypted. Extra information on this new service is coming quickly.

Community scalability and resiliency enhancements

A brand new VPN portal gives a containerized, hardened self-service portal for finish customers to obtain VPN shoppers and configurations, auto-provisioning, and clientless VPN bookmarks.

IPsec enhancements embrace seamless HA failover, tunnel standing monitoring through SNMP, distinctive PSK help for a similar native and distant gateway connections, and DH Group 27-30/RFC6954 help.

SSL VPN enhancements embrace FQDN (absolutely certified area title) host and group help for each distant entry and site-to-site SSL VPN.

SD-WAN scalability triples SD-WAN gateway scalability to 3072 gateways and the variety of SD-WAN profiles to 1024.

IPv6 enhancements embrace DHCP prefix delegation to seamlessly combine together with your ISP and new enhancements to the dynamic routing engine now help BGPv6 for improved IPv6 interoperability.

Watch a video overview of the VPN enhancements or the IPv6 BGPv6 and DHCPv6 capabilities.

Streamlined administration

Interface allow/disable delivers a top-requested characteristic to simply disable or allow community interfaces on the firewall with out dropping any configuration.

Object reference lookup addresses one other top-requested characteristic to search out the place a given host or service object is utilized in guidelines, insurance policies, and routing.

Hello-res show help provides elevated horizontal scalability to the administration console to reap the benefits of high-resolution shows and cut back horizontal scrolling.

Auto-rollback on failed firmware updates reduces any disruption, together with high-availability deployments.

Backup and restore now contains the choice to revive a backup from a firewall with built-in Wi-Fi to a firewall with out Wi-Fi.

Azure AD SSO for captive portal provides help for consumer authentication on the captive portal utilizing their Azure AD credentials.

Azure group import and RBAC add help for a brand new import assistant for Azure AD teams and computerized promotion for role-based admin modifications.

Watch movies overlaying the brand new administration options and Azure AD capabilities.

Different enhancements

Internet Utility Firewall (WAF) enhancements embrace geo IP coverage enforcement, customized cipher configuration, and TLS model settings, in addition to improved safety with HSTS enforcement and X-Content material-Kind-Choices enforcement.

Azure Single Arm deployment help allows the selection of a smaller occasion measurement to save lots of on infrastructure prices and cut back community and operational complexity.

Get extra particulars on what’s new

Obtain the total What’s New Information for an entire overview of all the nice new options and enhancements in v20.

Evaluation the launch notes and documentation.

Watch the demo video collection:

The way to get v20

As with each firewall launch, Sophos Firewall v20 is a free improve for all licensed Sophos Firewall clients and ought to be utilized to all supported firewall units as quickly as doable. This launch not solely comprises nice options and efficiency enhancements, but additionally vital safety fixes.

This firmware launch will observe our customary replace course of.

Please word that Sophos Firewall firmware updates at the moment are downloaded from Sophos Central. Get the full particulars right here or observe the short information under to get the most recent v20 firmware to your firewall:

1. Log in to your Sophos Central account and choose “Licensing” from the drop-down menu below your account title within the high proper of the Sophos Central console.

2. Choose Firewall Licenses on the highest left of this display screen.

3. Develop the firewall system you’re focused on updating by clicking the “>” to indicate the licenses and firmware updates accessible for that system.

4. Click on the firmware launch you wish to obtain (word there may be presently a problem with downloads working in Safari so please use a distinct browser reminiscent of Chrome).

5. You can too click on “Different downloads” in the identical field above to entry preliminary installers and software program platform firmware updates.

The brand new v20 firmware shall be progressively rolled out to all linked units over the approaching weeks. A notification will seem in your native system or Sophos Central administration console when the replace is on the market, permitting you to schedule the replace at your comfort.

Sophos Firewall v20 is a completely supported improve from any supported Sophos Firewall firmware model.

Take a look at the v20.0 GA launch notes for extra particulars, together with the identified points listing. Full product documentation is on the market on-line and throughout the product.


Supply hyperlink


Please enter your comment!
Please enter your name here