Sophos UTM 9.404 on AWS Release Notes

We’re excited to announce that we just released UTM 9.404 on Amazon Web Services (AWS). This release has some great new features as part of the regular UTM release, but we’ve also developed a new feature called Outbound Gateway (OGW) built specifically for our customers using UTM on AWS.

UTM Outbound Gateway (OGW)

OGW is our latest feature that helps customers ensure visibility, security, and compliance with both inbound and outbound traffic. OGW uses a patent-pending technology for active-passive or active-active routing of outbound traffic from your AWS Virtual Private Cloud (VPC) subnets to UTM Workers located in Auto Scaling groups.

This feature was primarily designed to help customers secure Virtual Desktop Infrastructure (VDI) using Amazon WorkSpaces. OGW provides an easy way for AWS customers to use UTM for the same use case but also opens up other security use cases by ensuring all outbound traffic is inspected against the rules you can define.

If you’d like to start using UTM on AWS, check out Sophos UTM on AWS Quick Start Guide or try out the free trial from the AWS Marketplace.

Bug Fixes

Includes all fixes up to UTM maintenance release 9.404

• 9.401 Release
• 9.402 Release
• 9.403 Release
• 9.404 Release

Specific bug fixes for UTM on AWS

• NUTM-1697 Missing rights for logs in AWS CloudFormation templates
• NUTM-2840 UTM ignores MTU sent by DHCP server
• NUTM-3469 HTTPS redirect not working correctly with Elastic Load Balancing (ELB)
• NUTM-4426 Allow default root login with SSH
• NUTM-4602 Larger EC2 instance size for UTM Controller

Updating to OGW

If you’re using Sophos UTM with Auto Scaling support that uses AWS CloudFormation, you can follow the steps for Updating Stacks Directly to get the latest Sophos Amazon Machine Image (AMI) that supports OGW (please note that OGW is only available for Sophos UTM with Auto Scaling).

Updating to 9.404

If you’re using Sophos UTM without Auto Scaling support, and you’d like to update to 9.404 you can use our Sophos Up2Date package:

1. Log on to WebAdmin, navigate to Management > Up2Date > Overview and use “Update to latest version now” to install the Firmware Up2Date. Click on the “Watch Up2Date Progress in new window” and an extra browser window will show the progress of the Up2Date installation. (The System administrator will receive a notification email once the Up2Date process has finished.)
2. Download the Up2Date package from our HTTP or FTP Server and install it under Management > Up2Date > Advanced.

If you want to provide feedback or want to discuss any of the UTM 9 features you should post it on our user community forums.

Thanks

Rich Vorwaller

Senior Product Manager