XG Firewall v18 Maintenance Release 4 (MR4) is packed with enhancements to performance, security, reliability and the management experience. XG Firewall MR4 also enables great new Sophos Central Management capabilities.
Be sure to take advantage of the new secure password hash system by resetting your admin password when prompted.
New Group Policy Import makes switching to Sophos Central from CFM or SFM quick and easy.
With legacy SFM and CFM platforms coming to end of life soon, Sophos Central provides the ultimate platform for managing all your firewalls moving forward. If you haven’t already, now is the time to switch.
While we always encourage you to keep your firewalls up to date with the latest firmware, over the next few months we are recommending you rapidly apply maintenance releases to ensure you have all the important security, performance, and feature enhancements applied as soon as possible.
Also ensure you have automatic pattern updates enabled so that you can be assured you have the latest protection updates.
XG Firewall v18 MR4 is an easy and fully supported upgrade from XG Firewall v17.5 MR6+ (including the latest v17.5 MR15 release). Please refer to the upgrade matrix for more details.
As usual, this firmware update is no charge for all licensed XG Firewall customers. The firmware will be rolled out automatically to all systems over the coming weeks, but you can access the firmware anytime to do a manual update through the Licensing Portal. Please refer to the documentation for more information on how to apply firmware updates.
And if you still haven’t upgraded to v18, or are still exploring many of the new features, be sure to take advantage of all the resources available, including the recent “Making the Most of XG Firewall v18” article series that covers all the great new capabilities in XG Firewall v18:
Also check out our new and improved Sophos Community XG Firewall home page! Subscribe to the XG Blog for the latest news and releases, get expert answers to your technical questions, and find useful Community-created content in our "Recommended Reads" section!
Upgrading from 18.0.3 MR-3 to 18.0.4 MR-4 I have noticed that in the file Entties.xml contained in the zip generated from "Export full configuration" contains the wi-fi passwords unencrypted.
Is by design?
This is the buggiest firmware I've seen from Sophos in a while. For anyone that hasn't upgraded yet, I would avoid this one like the plague. The web filters DPI and/or proxy are both busted. Broke multiple things in our environment, at multiple sites with separate XG's, so not a problem with a single one. SSL decryption is attempting to decrypt traffic it is set not to decrypt. After a period of time the web filter just stops all traffic on ports 80 and 443 completely. Only way to get it going again is to disable the web filter on our main LAN to WAN firewall rule and then reenable it. That will get it going again for a few minutes, or a few hours if we're lucky. Seriously Sophos. What are you guys smoking over there? Do you guys even test this stuff before rolling it out to the masses?
GZ is a ZIP File. Simply unzip this.
Since the update on the Sophos Connect Client under "Export Connection", I can only download one * .gz file. In 18 MR3 it was a * .tgb file. I was able to import this into the client. What are we imported into the client now?
sorry for delay in answer
now I can see it; and I see what made me confused; in earlier version there is WAN interface expanded by default but in 18x4 it is shrinked; I never needed to expand interface and did not noticed info about expanding it :-(
thank you for info