Sophos UTM Firewall

[w1z4rd]

Just came across this little beaut. Sophos UTM (Unified Threat Management).

https://www.sophos.com/en-us/products/unified-threat-management.aspx

There is a free home version for up to 50 devices.

I take my home and office security very seriously. For instance, all my office computers are linux and firewalled. Up until now I did not like any of the free options out there. They were not advanced enough to counter the threats I was concerned about. So to get around this I was using a bootleg proprietary version of Kerio Control. However, there is always a trust issue with anything bootleg and Ive being looking for a product to go legit with for a while now. I think I have found it. Does everything I need it to do and its its advanced threat detection quickly picked up that one of my staffs android phones has some malware.

Very happy with it. Reporting and control is excellent. I installed the JeOS version.

 

[grump_grouch]

Have you tried Sophos XG?

 

[w1z4rd]

Have you tried Sophos XG?

No, but it looks cool.... and expensive. Is there a free version? What the difference between XG and UTM?

 

[grump_grouch]

There is a free version (home edition) : https://www.sophos.com/en-us/products/free-tools/sophos-xg-firewall-home-edition.aspx.

XG is supposedly the newer version that combines technology from the UTM platform with newer features and technologies (https://community.sophos.com/products/xg-firewall/f/sophos-xg-firewall-general-discussion/10811/difference-between-xg-firewall-and-utm9)

 

[w1z4rd]

There is a free version (home edition) : https://www.sophos.com/en-us/products/free-tools/sophos-xg-firewall-home-edition.aspx.

XG is supposedly the newer version that combines technology from the UTM platform with newer features and technologies (https://community.sophos.com/products/xg-firewall/f/sophos-xg-firewall-general-discussion/10811/difference-between-xg-firewall-and-utm9)

Okay, so reinstall for me tonight. Thanks for the share.

Im starting to relook at the way I do security. Im trying to get it right from the ground up. Including buying hardened hardware to prevent things like arp poisoning.

 

[w1z4rd]

I think the home version is evaluation only for 30 days.

 

[Fulcrum29]

I think the home version is evaluation only for 30 days.

No, the Sophos UTM Home Edition is their basic no cost UTM9 home solution, up to 50 IP addresses. There is no evaluation period.

 

[grump_grouch]

When you register, a mail with a free serial number will be sent to you. This will unlock the product and the 30-day trial period will fall away. The only restriction for the home edition that I know of is that the product is limited to utilising a maximum of 4 cores and 6GB of memory.

 

[Fulcrum29]

When you register, a mail with a free serial number will be sent to you. This will unlock the product and the 30-day trial period will fall away. The only restriction for the home edition that I know of is that the product is limited to utilising a maximum of 4 cores and 6GB of memory.

Is that not only applicable to XG Firewall Home Edition?

 

[grump_grouch]

Is that not only applicable to XG Firewall Home Edition?

Correct. ghoti is currently running UTM but seems like he wants to try out XG. UTM is limited to 50 IP addresses (I think), whereas XG is limited on resource utilisation.

 

[Fulcrum29]

Correct. ghoti is currently running UTM but seems like he wants to try out XG. UTM is limited to 50 IP addresses (I think), whereas XG is limited on resource utilisation.

Ah, cool. Sorry, I am in between MyBroadband and rugby at the moment.

 

[w1z4rd]

Correct. ghoti is currently running UTM but seems like he wants to try out XG. UTM is limited to 50 IP addresses (I think), whereas XG is limited on resource utilisation.

You got it, okay thanks for this. Ill give it a try. I just figured this out, so now I got a more advanced toy to play with. Ive got 8GB on my firewall machine, but ill just remove 2. Or ill set it up in virtualbox

 

[w1z4rd]

Well there is a big difference in the ISO size. The UTM iso was 900mb, XG is 360.

 

[ramar]

UTM is the original firewall developed by Astaro before they were bought out by Sophos. XG is the new version, developed since Sophos bought Cyberoam, incorporating features from UTM and Cyberoam. UTM is still actively updated and supported by Sophos, but XG is where they are putting more resources.
UTM has always been, and still is an excellent, stable platform. XG is still relatively new and has had a lot of teething problems and still has issues.
Many organisations still swear by UTM and wont move over to XG until all the issues have been worked out.
Personally i much prefer the UTM and still opt for UTM when buying new Sophos devices (their units can run UTM or XG). Though XG is coming along slowly.

 

[SauRoNZA]

Very solid products either way.

If you get stuck Ghoti give me a shout as I'm a certified Sophos UTM Architect.

A little out of date but I don't think too much has changed.

 

[w1z4rd]

Very solid products either way.

If you get stuck Ghoti give me a shout as I'm a certified Sophos UTM Architect.

A little out of date but I don't think too much has changed.

All good, I used kerio a lot, so I got a general idea of how this logic works. Was quickly able to setup some nice rules. Busy installing XG. I see there is an option to upgrade from UTM. People think I am being paranoid by upping my security levels, but I really do not take the threats lightly, and can honestly say, I have the most secure network for any councillor. If there is going to be a leak, it will not come from me.

Though, some of our politicians lack IT skills, one laptop I cleaned had over 10k infections. I was like "well basically everyone in the world has your private data". Its a good thing my party doesnt have to keep many secrets cause theres not a snowballs chance in hell the average PR could secure their systems.

 

[w1z4rd]

What hardware would recommend for XG? I have it virtualized at the moment, but I want to commit it to hardware. Is there some small factor duel NiC system you can recommend at a reasonable price? I would prefer something with as few moving parts as possible.

 

[Park@82]

What hardware would recommend for XG? I have it virtualized at the moment, but I want to commit it to hardware. Is there some small factor duel NiC system you can recommend at a reasonable price? I would prefer something with as few moving parts as possible.

What would you say is a reasonable price?

 

[w1z4rd]

What would you say is a reasonable price?

How about something like this?

http://www.bidorbuy.co.za/item/2727...xRJ45_Barebone_Mini_PC_F110D_BD000_Giada.html

 

[w1z4rd]

More detailed spec.

http://www.giadatech.com/pshow-125.html