The XG Firewall v18 MR1 release has been temporarily pulled. Sophos has received reports from a subset of XG Firewall v18 MR1 systems, where the update has caused issues with traffic passing through the Firewall. Because of this, MR1 was pulled on the first day of Community availability as it warranted a fix before broader release. We expect a new build of MR1 that addresses the issue to be announced to the Community within the next few days. In the meantime, Sophos strongly advises that users roll back to v18.0 GA-Build354 while our development teams work to resolve this in a revised MR1 release.XG Firewall v18 has been our most ambitious release ever and is one of the highest quality releases we’ve ever done thanks to an extensive Early Access Program that ran for over five months. In fact, several customers and partners deployed it en masse to production firewalls on launch day as a result of their confidence in the early access program. It is a rock solid and extremely well-tested release that you can feel confident running on your XG Firewall.If you are looking to upgrade from v17.5, please read the latest KB article which contains more information on this topic.
Hi XG Community!
We've released XG Firewall v18 MR1.
Note: Upgrade from SF 17.5 MR11 to v18.0 MR1 is now supported.
Please refer XG Firewall v18 highlights for more details on all-new Xstream Architecture delivering extreme new levels of visibility, protection and performance. Also, check out our XG Firewall v18 playlist on YouTube to find out what's new in XG Firewall v18!
As usual, this firmware update is no charge for all licensed XG Firewall customers. The firmware will be rolled-out automatically to all systems over the coming weeks but you can access the firmware anytime to do a manual update through Licensing Portal. You can refer this article for more information on How to upgrade the firmware.
For fresh installations, we will update this post with installer download links soon.
Free Online Training
Customer Resources and How-To Videos
Take advantage of Partner and Sophos Professional Services
Here are some direct links to helpful resources:
New to XG Firewall?
If you’re new to XG Firewall, see how it provides the world’s best network visibility, protection and response on the new XG Firewall website.
Thanks for this; Downloaded, uploaded, installed and RUNNING :-D
i just rolled back one of our XG210 to 354, couldn't access anything through VPN anymore, WAF rules were not working anymore and so didn't the NAT rules , the log viewer was not of any help.
MR1 Does appear to be all good! Although I had an issue 1st go round, must of been bad upload to xg even though XG verified the file. No matter main point is it works! Thanks Sophos keep up the good work!
Anyone with similar issue like Pascal and myself try re uploading the Firmware replacing MR1 that didn't work!
I am rolling back. Big issue after upgrade from 18.0 GA to MR1. All HTTPS traffic stopped processing. WAF rules stopped working. I couldn't spend much time on troubleshooting, had to get system working again. Currently I cannot recommend to perform upgrade!
Same issue here, suddenly IPS and WAF stop working.
Same issue here. Rolled back for now.
Same issue here, waf rules are dead... Immediate rollback.. fantastic.
Installed and all worked for 30 seconds then nothing. no cross vlan device access, no internet access etc... rolled back then tried an upgrade again. same issues. log viewer no help, all services running etc. Fortunately the only thing I could access was the admin portal so I could rollback easily via the GUI. Sophos, is this a bad update file ?
any known issues to consider for existing Sophos Connect VPN deployments when updating from 17 mr10 or mr11 to this version?
Hey folks, please check your linked NAT rules there was supposed to be an improvement in these and the DPI was supposed to be improved. My home installation is working...
Added, performance appears to have been enhanced and mail scanning on my Apple devices is working again.......
XG stopping traffic after about 8 hours, no log entries. Needed to remove and restore power before service would work.
Shortly after upgrading experienced connectivity issues - no internet availability on the LAN (as tested from multiple devices, hardwired and wifi). From the WebGUI everything was fine and showed all WAN interfaces as up. Sites that couldn't connect from LAN devices pinged and tracerouted just fine through the WebGUI. Rebooting seemed to fix, but then 10 minutes later same issues arose. Logs don't show anything. Rolled back.
MR1 broke SSL Site to Site VPN for me. Had to roll back.
Firmware installation After Gateway Down Up Down Up. Down
Please don't apply this to anything that is "important", there appears to be a serious problem with traffic stopping after a few hours. I've reverted the handful of devices I migrated after they all broke ....