Microsoft Exchange and Active Directory Blog
Sophos UTM 9.6 Webserver Protection (WAF) can now forward WebSocket connections to the Real Server. This means that web applications that require WebSocket for the function now work in connection with the UTM WAF. One of these applications is, for example, the Windows Admin Center, but the UniFi SDN Controller also uses WebSockets for certain features. Although ... Read more
Since the last article on Sophos UTM Webserver Protection and Exchange was written a few days ago, I have decided to update the howto. The last article referred to UTM 9.4 and is now almost 3 years old. Therefore there is now a new article with the UTM in ... Read more
Today Sophos has released an update for Sophos UTM 9.6. The update raises the version number to 9.601-5. The update is a maintenance release, which requires a restart of the UTM, AccessPoints and REDs (the AccessPoint and REDs also perform a firmware update). The following problems are solved with the update ... Read more
Sophos UTM 9.6 now also offers the long-awaited support for free Let's Encrypt certificates. Although the UTM only supports the ACMEv1 protocol and therefore cannot request wildcard certificates, SAN certificates with up to 100 DNS names can be requested automatically. Brief overview of Let's Encrypt Let's Encrypt is a certification authority (CA) that ... Read more
Sophos released a new update for the Sophos UTM on 21.11.2017 which fixes numerous problems. For me, the update is not yet offered via Up2Date. Here is a list of the fixed problems: NUTM-8651: [AWS] AWS Permission for "Import Via Amazon Credentials" NUTM-7678: [Access & Identity] Pluto dies with coredump at L2TP connections NUTM-8211: [Access ... Read more
Sophos has recently released the update to version 9.5 for the UTM. One of the new features of UTM 9.5 is the ability to set the TLS version for the web application firewall. However, this is still not enough to achieve an A+ rating in the SSL Server Test by Qualys SSL Labs. Although an A rating is not necessarily ... Read more
Sophos UTM version 9.5 has been available since yesterday morning. All those who, like me, have not yet been offered the update via Up2Date can download it here (301 MB): http://ftp.astaro.de/UTM/v9/up2date/ The update can then be uploaded manually via the GUI and thus the UTM can be updated: Since there have been problems in the past with ... Read more
Another update for Sophos UTM was released today, which is supposed to fix the problems with the last update. Even though I was not affected by the last problems, there always seems to be an increased reason for caution with updates for the UTM. I have therefore taken another snapshot of my UTM VM ... Read more
Today a new update for Sophos UTM was released, actually there are two updates: The two updates can be downloaded here: http://ftp.astaro.de/UTM/v9/up2date/ Here are the release notes: Fix [NUTM-2392]: [AWS] Allow the user to select the security group to port during conversion Fix [NUTM-5327]: [AWS] Confd object missing after instance recovery in HA ... Read more
Sophos UTM Email Protection contains a bug where recipient verification is simply skipped. In the case of recipient verification via Active Directory and the query via SSL, no verification of the recipients takes place. Here are the problematic settings: Recipient verification via Active Directory Query of the Active Directory with SSL In the live log of Email Protection ... Read more
