Data Control and DLP
Endpoint Security and Control
Sophos UTM 9
Web Server Protection
Sophos Firewall Manager
Sophos iView V2
Tweets by SophosSupport
Sophos XG Firewall: Missing or mismatch of characters on the website while using WAF
Created: 14 May 2020
This article describes an issue with the Form hardening and steps to add them to exceptions.
Sophos XG Firewall: How to disable HTTP trace option for WAF/Web Server
Created: 25 Sep 2019
This article describes the steps to disable HTTP trace option in WAF module as it is by default enabled in SFOS. The steps below are needed if there is an issue with PCI compliance which affects Vulnerability CVE-2004-2320 and CVE-2007-3008.
Sophos XG Firewall: How to disable the HTTP TRACE/TRACK function when using the WAF module of the XG.
Created: 10 Jan 2019
This article shows how to disable the HTTP TRACE/TRACK function when using the WAF module of the XG.
Sophos XG Firewall: How to resolve issues related to web proxy when a drop all firewall rule is added
Created: 15 May 2018
This article describes the steps to resolve some known issues related the web proxy when a drop all firewall rule is added at the end of the firewall's rules list.
Sophos XG Firewall: Details are not updated in the server when using WAF
Created: 19 Apr 2018
This article describe the workaround in order to resolve the issue when details are not being updated in the server using WAF.
Advisory: Security update for users of Web Application Firewall (WAF) in Sophos XG Firewall
Created: 28 Dec 2017
A cross-site scripting (XSS) vulnerability within the WAF component of the Sophos XG Firewall operating system (SFOS) discovered. The vulnerability, which was responsibly disclosed to Sophos, could be used for unauthenticated remote code execution. Our investigations have found no evidence of the vulnerability being exploited.
Sophos XG Firewall: WAF configuration guide
Created: 3 Apr 2017
This article explains the basics of configuring a Sophos XG Firewall with the Web Application Firewall (WAF) feature.
Sophos XG Firewall: WAF Configuration For Remote Desktop Services on Windows Server 2012 R2
Created: 20 Feb 2017
This article explains how to configure WAF for Microsoft RDS on Windows Server 2012 R2
Sophos Firewall: How to troubleshoot SlowHTTP protection
Created: 1 Feb 2017
This article explains how to troubleshoot some of the more common issues with SlowHTTP Protection.
Sophos XG Firewall: How to protect webserver from Slow HTTP Attack
Created: 17 Oct 2016
This article describes the steps to protect webserver from Slow HTTP Attack.