Documentation changes for the weeks of March 14th

Table of Contents

• Sophos Firewall
• Sophos Switch
• UTM
• ZTNA
• Central Email
• Central
• Endpoint
• Mobile
• Phish Threat
• SafeGuard
• Cloud Optix

Sophos Firewall

New

• How-to: Turn on Security Heartbeat
  
  • 18.5 - https://docs.sophos.com/nsg/sophos-firewall/18.5/Help/en-us/webhelp/onlinehelp/AdministratorHelp/SophosCentral/SecurityHeartbeatOverview/EnableHeartbeat/
    
    
• Information about How the Xfrm interface sequence number is assigned.
  • KB-000043833 Sophos Firewall: How is the Xfrm interface sequence number assigned?

Updated

• Difference required between XFRM and listening interface MTU for FastPath offload
  • 19.0 - https://docs.sophos.com/nsg/sophos-firewall/19.0/Help/en-us/webhelp/onlinehelp/AdministratorHelp/Network/Interfaces/NetworkPhysicalInterfacesEdit/
    
    
• Sophos Connect video addition
  • 19.0 - https://docs.sophos.com/nsg/sophos-firewall/19.0/Help/en-us/webhelp/onlinehelp/AdministratorHelp/VPN/RemoteAccessVPN/VPNIPsecSophosConnectClient/
  • 18.5 - https://docs.sophos.com/nsg/sophos-firewall/18.5/Help/en-us/webhelp/onlinehelp/AdministratorHelp/VPN/RemoteAccessVPN/VPNSConProvisioningFile/
    
    
• Added hardware table differences for RED
  • 18.5 - https://docs.sophos.com/nsg/sophos-firewall/18.5/Help/en-us/webhelp/onlinehelp/AdministratorHelp/SystemServices/RED/RED50vsRED60Behavior/
    
• Update URL limit in groups
  • 18.5 - https://docs.sophos.com/nsg/sophos-firewall/18.5/Help/en-us/webhelp/onlinehelp/AdministratorHelp/Web/URLGroups/WebURLGroupAdd/

• The firewall rule screenshot was modified to correct the "Services" parameter. Added a note to ensure that the WAN and LAN interfaces are not in the same network.
  • KB-000035921 Sophos Firewall: Configure a direct proxy when not the gateway device
    
    
• Ongoing internet issue for multiple PPPoE connections
  • KB-000043831 Advisory: Sophos Firewall: Internet is not working in SFOS 18.5 MR-2 when there are multiple PPPoE connections
    
    
• Added XFRM as one of the reserved interface names.
  • KB 000043789: Sophos Firewall: Restrictions on values allowed in renaming an interface
    
    

Sophos Switch

Updated

• Switch password info
  https://docs.sophos.com/nsg/switch/help/en-us/userGuide/installation/managementInterface/#management-interface-and-default-values
  
  

UTM

New

• Provides information regarding Sophos UTMnot being impacted by CVE-2021-43527.
  • KB-000043620 Sophos UTM: Is Sophos UTM affected by CVE-2021-43527?
    
    
• Can Japanese strings (2-byte characters) be used in Mail Protection?
  • KB-000043835 Sophos UTM: Can Japanese strings (2-byte characters) be used in Mail Protection?
    
    

ZTNA

• Added turning off tamper protection as the first step.
  • KB 000043626: Sophos Zero Trust Network Access: Sign out from ZTNA agent
     

Central Email

Updated

• Resolved advisory
  • KB-000043838 Advisory: Sophos Central Email - Mailflow rules random email delays
    
    

Central

New

• Provides an answer to the issue when the "New firewall registered with Sophos Central." doesn't appear in Alert.
  • KB-000043622 Sophos Central: Alert "New firewall registered with Sophos Central." doesn't appear in Alert
    
    
• Provides information about the behavior of the "Use my own training" option for Sophos Central - Phish threat campaign feature
  • KB-000043834 Sophos Central: Behavior of the "Use my own training" option for the customer
    
    

Updated

• Maintenance advisory
  • KB-000040083 Advisory: Sophos Central Maintenance scheduled for Saturday, March 19th, 2022
    
    
• Added a specific section for controlled updates
  • KB-000043550 Sophos Intercept X for Windows: Product architecture changes
    
    
• Updated note advising that the SophosSAVICLI tool be replaced by CQ 2022
  • KB-000043480 Sophos Central: Scanning options with SophosSAVICLI
    
    
• Updated content regarding the use of filters
  • KB-000035422 Sophos Central: Admin AD Sync Utility filters
    
    
• Fixed the broken link that points to the documentation page Stop detecting an exploit.
  • KB 000039000: Sophos Central Enterprise and Partner Dashboards: Unable to add an 'Exploit Mitigation' exclusion entry within a Global Policy
    
    

Endpoint

New

• New article regarding failed SAV for Linux deployment using minipkgs
  • KB-000043837 Sophos Anti-Virus for Linux - Deployment of SAV via previous minipkg fails since SAV release 9.17.2
    
    

Updated

• Added a note that a deployment package is only supported for the SAV for Linux release for which it was created
  • KB-000034603 Sophos Anti-Virus for Linux: Create a deployment package by using mkinstpkg
    
    
• Updated the SAV 9 and 10 retirement dates under Linux.
  • KB 000034756: Sophos Endpoint and Server Protection: Retirement calendar for supported platforms and operating systems
    
    
• Attached the March 2022 V1 file.
  • KB 000034074: Sophos Enterprise Console and Sophos Central: Supported Windows Endpoint and Server Platforms
    
    

Mobile

Updated

• Resolved advisory
  • KB-000043841 Advisory - Sophos Mobile: Renewing APNS certificate does not work
    
    

Phish Threat

Updated

• Updated the steps in configuring Phish Threat with Office 365
  • KB-000037983 Phish Threat V2: IP addresses and domains to include in the allow list
    
    

SafeGuard

Updated

• The download URL for the WinPE SGN ISO has been fixed and updated.
  • KB-000033663 SafeGuard Enterprise: Recover data from a volume-based encrypted SafeGuard Device Encryption client
    
    
• Updated KBAs regarding engine builds
  • KB-000043759 SafeGuard File Encryption: Engine build 37 for SafeGuard 8.1.x and 8.3.x
  • KB-000038604 SafeGuard File Encryption: Engine build 23 for SafeGuard 8.1.x
  • KB-000038831 SafeGuard File Encryption: Engine build 24 for SafeGuard 8.1.x
  • KB-000038857 SafeGuard File Encryption: Engine build 25 for SafeGuard 8.1.x
  • KB-000038973 SafeGuard File Encryption: Engine build 27 for SafeGuard 8.1.x / 8.2.x
  • KB-000039027 SafeGuard File Encryption: Engine build 28 for SafeGuard 8.1.x / 8.2.x
  • KB-000039143 Safeguard File Encryption: Engine build 30 for SafeGuard 8.1.x / 8.2.x
  • KB-000041928 SafeGuard File Encryption: Engine build 34 for SafeGuard 8.1.x / 8.2.x / 8.3x
  • KB-000036282 SafeGuard Enterprise: Supported clients on Windows 10 versions
  • KB-000038421 Safeguard Enterprise: File Encryption Engine updates for versions 8.10 / 8.20 / 8.30
    
    

Cloud Optix

Udpated

• Search field names: Many updates, additions and corrections.
  • https://docs.sophos.com/pcg/optix/help/en-us/MonitorAlerts/Search/FieldNames/index.html 
    
    
• Policies: very minor updates – nothing worth mentioning.
  • https://docs.sophos.com/pcg/optix/help/en-us/Configuration/Policies/PoliciesCustomize/index.html
  • https://docs.sophos.com/pcg/optix/help/en-us/Configuration/Policies/AWSResourcesScanned/index.html
    
    
• IAM Visualization: modified to cater for the addition of Azure assets to the IAM visualization feature.
  • https://docs.sophos.com/pcg/optix/help/en-us/MonitorAlerts/IAMVisualization/index.html