203 Lotus blogs updated hourly. Who will post next? Home | Blogs | Search | About 
Latest 7 Posts
Badkey Future Social Media Channels
Thu, Dec 29th 2016 7
Sophos UTM Up2Date 9.408004 package
Thu, Nov 10th 2016 4
Aangepast Twitter account. Adjusted Twitter Account
Fri, Oct 28th 2016 2
Running VMware Virtual Center 5.5.0 build-4180647. Update 3e
Sat, Oct 1st 2016 15
Badkey OTAP on VMware ESXi 5.5.0 Build 4179633
Tue, Sep 13th 2016 7
CentOS Linux Kernel Update 2.6.32-573.22.1 Released
Fri, Apr 1st 2016 2
IBM Messaging Roadmap. Updated 20-Apr-2015.
Tue, Mar 22nd 2016 4
Top 10
Running VMware Virtual Center 5.5.0 build-4180647. Update 3e
Sat, Oct 1st 2016 15
Running Sophos UTM Firewall Release 9.200-11 on VMware ESX
Thu, Mar 6th 2014 12
Domino 9 ODS 52
Sat, Feb 8th 2014 11
Sophos UTM 9.3 firewall and Sophos AP30 access point
Sat, Nov 29th 2014 9
Best Practices for Upgrading to ODS on Clients and Servers
Sat, Feb 8th 2014 8
Firmware Update FRITZ!Box Fon WLAN 7360. (FRITZ!OS 6.03)
Thu, Feb 13th 2014 8
Sophos UTM Up2Date 9.207019 package
Fri, Oct 3rd 2014 8
[RHSA-2015:2636-01] Important: kernel security and bug fix update
Sat, Jan 23rd 2016 8
WebRTC IP address revealed
Sat, Nov 14th 2015 7
Badkey OTAP on VMware ESXi 5.5.0 Build 4179633
Tue, Sep 13th 2016 7

Sophos UTM 9.3 firewall and Sophos AP30 access point
Twitter Google+ Facebook LinkedIn Addthis Email Gmail Flipboard Reddit Tumblr WhatsApp StumbleUpon Yammer Evernote Delicious
John Willemse    

Free firewall for home usage.
Sophos UTM Home Edition

We just did the upgrade to Version: 9.301002
Image:Badkey Corner - Sophos UTM 9.3 firewall and Sophos AP30 access pointImage:Badkey Corner - Sophos UTM 9.3 firewall and Sophos AP30 access point

We also installed an AP30 on the network:

Technical Specifications AP 30

Simplify your wireless networking by using Sophos UTM as a wireless controller to centralize your Wi-Fi management and security. Our access points are automatically set up and configured by the UTM. That means all your wireless clients get complete threat protection too.

  • Centrally controlled wireless from your UTM
  • No local configuration of access points required
  • Complete UTM protection for wireless clients
  • Quick voucher-based guest access
  • Choose from a range of access-point models
  • Uses high capacity 802.11n for reliable access
  • Installs fast with automatic setup and configuration
  • You can set up multiple wireless Access Points (APs) within minutes. They require no local configuration and will simply find the controller, retrieve their IP address via DHCP, and import the configuration. Devices automatically appear in the UTM interface where you can manually activate them.
  • Creates reliable mesh networks
  • Our range of access points support different deployment scenarios. They include the ceiling-mount design AP 30 and the dual-band/dual-radio AP 50 which acts as a repeater and/or bridge to extend coverage to hard to wire areas.
  • Provides guest Wi-Fi and BYOD access
  • We give you secure, easy-to-manage guest access out-of-the-box – without extra appliances, licenses or complex configuration. Customizable splash pages, bandwidth limits, on-the-fly guest logins and content filtering allow you to customize your guest experience.
  • Secure wireless and integrated UTM protection
  • To prevent unauthorized access we use the most advanced encryption and authentication standards available, including WPA2-Enterprise in combination with IEEE 802.1X (RADIUS authentication). And, our APs forward wireless traffic to the UTM, giving wireless clients the same level of security as if they were physically connected to the LAN.

Sophos UTM Advantage (9.3) is coming soon – find out what’s new!

Major New Things:

Live AV Lookups in E-Mail Protection
Introduced in UTM 9.2 for Web Protection, Live AV lookups now come to the E-Mail Protection to further increase the protection surface of UTM. This option will improve the malware detection rates by consulting the cloud infrastructure from SophosLabs for possible threat matches.

SPX Self-Registration
With the self-registration feature, recipients of an SPX encrypted email now are offered the option to register themselves through an online-portal where they will be able to create, reset and recover passwords to access their encrypted emails. This will eliminate the need to manually communicate passwords to recipients of encrypted email.

SPX – Support Attachments on Reply Portal
When replying to an SPX-encrypted email, now recipients can add attachments to their message so that the full communication now can be encrypted in both ways.

Policy Tagging
With UTM 9.2 we introduced the ‘Website List’ feature where customers can add URLs and override the category. URL tagging extends this feature by allowing customers to apply zero or more custom tags, or labels to URLs. They can then use these tags in Web Policy to fine tune actions for specific sites. For example, if a customer has a restrictive policy but needs to access customer websites that would otherwise be blocked, they can add their customer sites to the Website List, tag them as ‘Customer Sites’ and then modify the policy to enable access to the 'Customer Sites’ tag.

Time Quotas
For many web gateway use cases it makes sense to offer ways to allow users access to personal websites for a limited time period. With the new feature in Web Protection, administrators can now set up time quotas allocations that can be assigned to specific sites, categories or groups of categories for specific users or groups. Users will be warned that they're using their quota. When a quota expires, they'll be informed accordingly.

Selective HTTPS filtering
To allow more flexibility and provide better performance we have implemented an option to allow selective HTTPS filtering. This will help security-conscious organizations to perform the important scans in HTTPS like (a) the ability to detect malicious content, (b) the ability to identify search terms and enforce safe search for Google and other search engines, and (c) the scanning webmail traffic for DLP only for specific sites.

Support for new hardware SG1xx, SG5xx and SG6xx
This release will add support for new hardware we are going to introduce later this year and will further extend our hardware product line. The support added includes SG1xx, SG5xx, SG6xx appliances as well as the new access points AP15 and AP100.

Hotspot improvements
We built an interface to communicate with Micros Fidelio hotel management software via the FIAS protocol. In addition, we have implemented support for HTTPS and the possibility to set up hotspots in a more multi-tenant fashion.

Multiple bridge support
For many advanced firewall configurations – especially when the UTM is not the main gateway – can be solved more easily by simply allowing multiple bridges. With introduction of this feature we at the same time cleared up the configuration options in the UTM Webadmin by moving the bridge configuration directly into the interfaces pane.

Minor Things:

VLAN DHCP & Tagging
We removed some restrictions around VLANs to make live of an admin easier. First we now allow DHCP on VLAN interfaces. Secondly we now allow tagged and untagged interfaces on the same hardware.

True File Type Detection
In our web and mail proxy we now allow detection of file types inside a downloaded archive file (zip, rar, …). This allows blocking based on file types included in those archives – rather than blocking archive files in general.

Sophos Customer Support secure access to UTM
With increasing number of global support sites with different IP ranges, it is also increasingly complex for customers to allow Sophos Support teams access to their UTM via Webadmin and SSH. Therefore we implemented a function inside Webadmin that allows simple and secure access by Sophos Support on request and under control of the customer.

WAF allow /block lists
For the Web Application Firewall we now added lists to allow and block IP's, which now is possible in the sitepaths.

WAF wildcard extension
Exceptions for internal servers now allow wildcards also in the middle of the server path. This allows admins to easily add exceptions for multiple servers effectively eliminating the need to maintain long lists in Webadmin.

WAF prefix/suffix option
Some environments, most notably Microsoft servers like Exchange and Sharepoint, require UPN/domain-style user names for log in. By adding an option to append a prefix or suffix to usernames customers now are able to add e.g. a default domain to facilitate the use in such environments.

HyperV 3.5 Support
The UTM 9.3 now fully supports Microsoft Hyper-V Server 2012 R2. We are incorporating MS Integration Tools v3.5 for Hyper-V which include the latest drivers and additional capabilities like high availability and load balancing.

Other New Things:
[Web] We have enhanced the https performance by several proxy improvements.
[Mail] Added fonts for Greek, Japanese, Chinese, Cyrillic PDF documents generated by SPX-encrypted emails.
[Mail] Added header manipulation possibilities in emails, in order to give customers the option to add/delete multiple headers to the message envelope.
[WiFi] Added Automatic Channel Selection (ACS), utilizing background scanning.
[AppCtrl] Updated Application Control Engine added better support for ATP and broader application coverage as well as IPv6 support.
[WAF] Added a setting to change WAF performance parameters
[WAF] Ability to upload custom rules (backend enablement required)
[WAF] Added scan size limit configuration

The Badkey Team

Nov 29, 2014
10 hits

Recent Blog Posts
Badkey Future Social Media Channels
Thu, Dec 29th 2016 8:45p   John Willemse
In the future we use the Social Media Channels as below, The LinkedIn Account https://www.linkedin.com/in/willemsej/ The Twitter Account https://twitter.com/willemsej The Google Plus Account https://plus.google.com/+JohnWillemse My Personal Twitter Manager https://tweetdeck.twitter.com/ The Badkey Team

Created and Maintained by Yancy Lent - About - Planet Lotus Blog - Advertising - Mobile Edition