Reflexion will be End-of-life on March 31,2023. See Sophos Reflexion EoL FAQs to learn more.
While many organizations have already upgraded to SFOS v19 to take advantage of all the great new SD-WAN, VPN, and quality-of-life improvements, we know many of you are possibly waiting for the first maintenance release for v19 before jumping in. Our team is hard at work on the first MR for v19, but in the meantime, we’ve released a nice update for v18.5 with MR4.
Of course, these new enhancements will also be included in v19 MR1 when it becomes available.
The release of v18.5 MR4 follows our regular firmware release process so you can download it now from MySophos or wait until it appears in your console over the next few weeks.
Sophos Firewall OS v18.5 MR4 is a fully supported upgrade from v17.5 MR14 and later, v18 MR3 and later, and all previous versions of v18.5. Please refer to the Upgrade information tab in the release notes for more details.
It is critically important for your network security that you keep all your firewall devices up to date, either on v18.5 MR4 or v19, as every release of SFOS includes important security fixes. We know many customers have devices running old, end-of-life, and unsupported firmware releases that are putting their networks at risk – make sure you check all your Sophos Firewall devices and either update them, upgrade them, or decommission and disconnect them.
If you have XG 85(w) or XG 105(w) devices, they must be upgraded to XGS Series very soon as they are end-of-life and no longer supported as of August 17th, 2022.
When will v19 MR1 finally be available? The not properly working Anti-Spam is driving our customers nuts for months now. Good that you've tested this properly before releasing it btw.
NC-90702 has been fixed which at least results in the SASI engine actually working, but NC-93678 isn't fixed so detection rates are still low.
I'm not expecting 19.0 MR1 to be any different - it's detection rates will be much lower than 18.5 MR2. If you need the SD-WAN improvements of 19.0, then upgrade and either burn your time with Sophos Support on getting SASI working properly or move your anti-spam processing to something that works.
So waiting for a fix can take just forever, like everytime with sophos. Thanks for pointing that out, now have to downgrade a lot of firewalls just because Sophos is incompetent, nice.