Hi XG Community!
We've finished SFOS v16.05.6 MR6. This release is available from within your device for all SFOS v16.05 installations as of now and will increase the group in a few days.
The release is available to all SFOS version via MySophos portal.
You can find the firmware for your appliance from in MySophos portal.
well lets give it a try then
no troubles on upgrade, now were gonna see how it goes.
1st day in and things are not so good on this release. Im particularly having issues with regards to authentication - STAS or NTLM. Erratic results and STAS just seems to blow up on occasion as if its database has suddenly collapsed. Not happy and Im considering reverting back to the former release.
Sorry, the previous comment was left by myself. Wrong account! So yeah, not quite so happy. It seems authentication is just not working with regards to user based firewall rules. I have had to put in a catch all rule to allow access because they just aren't hitting the specified rules. The funny thing is, that they were using STAS albeit for a short time. Now Ive reverted authentication back to NTLM Ive seen some really weird stuff going on but essentially, users auth is not being applied at the firewall rule level.
Did anyone have trouble with STAS post upgrade? Mines a bit broken.
talex , can you give us more details about "NC-19614 [SSLVPN] OpenVPN vulnerabilities"? Which one are covered? Thanks
I am brand new to Sophos XG and this was my first Update. After the update I am having trouble to produce PDF Reports. I would be great if someone can push me in the correct direction to fix this on my system. (XG 115W, and Client iMac with Safari - but the problem exists also on Windows an different browsers)
Issue with multiple quarantine digest mails is solve, I noticed it but was not noted in the list. Thanx anyway.
Any idea when feature set hostname in quarantine digest report will be added ?
+1 > [give us more details about "NC-19614 [SSLVPN] OpenVPN vulnerabilities"?]
After upgrade STAS authentication stopped working. Users are present on STAS agents but not synchronized to UTM. Moreover users aren't authenticated even if they put their credentials. Reverted to previous version. Very annoying
For who is having issue with STAS, please post here:
Since updating last night, all emails with docx, xlsx attachments are being filtered out. Very frustrating, why doesn't the email filtering would as nicely as the UTM product?
Something wrong with Logs in this version or engines are different but we found that all IPS logs were not showing after updating until opened a case with support to fix it but still records looks different, they found that records are blocked through the console but not showing inside logs through appliance web console.
as far as I can see, "NC-19614 [SSLVPN] OpenVPN vulnerabilities" backports fixes for CVE-2017-7521,CVE-2017-7520,CVE-2017-7508,CVE-2017-7522
I upgraded today my XG Cluster. I'm not using STAS so I can't say anything about that, but it's frustrating seeing that the DHCP Relay issue is not solved. I had to manually re-create my DHCP Relay config.
I'm still convinced that XG it's a quantum leap back compared to it's poor old brother in law UTM platform.