We are super excited to announce the early access program for SD-WAN VPN Orchestration in Sophos Central. If you’ve ever setup more than a couple of VPN tunnels between different firewalls, you know how time consuming and tedious this process can be. Sophos Central Orchestration makes interconnecting VPN tunnels between multiple Sophos Firewalls a quick and easy task.
See how it works
The new SD-WAN VPN Orchestration tools in Sophos Central enables you to share network resources across a distributed network with just a few clicks. Whether you need a full mesh network, hub-and-spoke topology, or something in-between, Sophos Central will automatically take care of all the necessary tunnel and firewall setup to enable your SD-WAN overlay network.
You simply select the firewalls you have under management that you wish to participate in the SD-WAN connection group, and then select the network resources you wish every site to have access to, and with the flip of a switch, you essentially watch your SD-WAN VPN overlay network come to life as all the necessary firewall access rules and tunnels are created for you automatically.
There are three pre-requisites for Central SD-WAN VPN Orchestration:
Central Orchestration is a new license subscription available as a 30-day trial on all Sophos (XG) Firewall devices running SFOS. Central Orchestration is included at no extra charge as part of the new Xstream Protection bundle for Sophos Firewall and is available as a separate license subscription as well.
While all Sophos (XG) Firewall licenses are scheduled to be migrated to the new licensing scheme in the next few weeks, you can activate a Central Orchestration trial now through MySophos to get started with the EAP right away:
The new Central Orchestration subscription license also includes Central Firewall Reporting Advanced with 30-days of data retention in Sophos Central. This enables you to take advantage of all the great new Sophos Central reports and custom reporting tools to get deep insights across your entire estate of firewalls or any firewall group.
You can easily extend data retention up to a year through additional storage licenses. Check out the storage estimation tool to get a feel for what’s best.
In addition, Central Firewall Reporting Advanced also includes the Sophos XDR/MTR connector which enables firewall data to be shared for cross-product Extended Detection and Response and our 24/7 Managed Threat Response service.
Sophos Central SD-WAN VPN Orchestration is expected to be generally available in early August, but the team is continually adding new features to Sophos Central for firewall management and reporting. There are two additional features coming to Central Orchestration within the coming weeks to make this capability even more helpful…
In addition, new features are planned later this year for Central Management and Reporting including:
Please share your feedback in the community forums to help make this release the best it can be.