SSL VPN Pattern upgrade to 17.5.15

Hello,

Thanks for reaching out to Sophos Community. 

v17.5.x is already EOL, please refer to this Lifecycle details: https://support.sophos.com/support/s/article/KB-000035279?language=en_US

 Pattern updates will be available only on the supported software releases: https://docs.sophos.com/support/help/en-us/lifecycle/sf/index.html#software-releases

For Upgrade compatibility, kindly refer here: https://docs.sophos.com/releasenotes/index.html

Hope this helps. Have a nice day and thank you for choosing Sophos.

Regards,

Hi Raphael.

I would like first to thank you for your effort and reply.

Yes, I knew that the v17.5.x is already EOL, but I`m looking for Compatibility Matrix between the SFOS firmware version and the Patterns version.

As you can see attached, despite it is SFOS 17.5.15 but it has patterns updated till 2024 like Avira, AV, ATP, etc.

As the current SSL VPN is 1.0008 (2021), I`m asking if it is possible to upgrade it to sslvpn_1.02_1.0.009 (2022) as a minor upgrade only to support TLS 1.2, not to the latest one as I still realize that we are having a legacy firmware version (17.5.15).

On another hand, Please note the below link, which is an old post (4 Years ago) stated by the Sophos Support that you don’t have plans to introduce TLS 1.2 for SFOS v.17.5. community.sophos.com/.../set-the-tls-minimum-version-to-1-2

 Set the TLS minimum version to 1.2  

So, just want to make sure that if still you don’t support TLS 1.2 for SFOS v.17.5 or we can do the manual minor upgrade without issues as explained above.

Thanks again for your Support.

Regards,

Hi Raphael.

I would like first to thank you for your effort and reply.

Yes, I knew that the v17.5.x is already EOL, but I`m looking for Compatibility Matrix between the SFOS firmware version and the Patterns version.

As you can see attached, despite it is SFOS 17.5.15 but it has patterns updated till 2024 like Avira, AV, ATP, etc.

As the current SSL VPN is 1.0008 (2021), I`m asking if it is possible to upgrade it to sslvpn_1.02_1.0.009 (2022) as a minor upgrade only to support TLS 1.2, not to the latest one as I still realize that we are having a legacy firmware version (17.5.15).

On another hand, Please note the below link, which is an old post (4 Years ago) stated by the Sophos Support that you don’t have plans to introduce TLS 1.2 for SFOS v.17.5. community.sophos.com/.../set-the-tls-minimum-version-to-1-2

 Set the TLS minimum version to 1.2  

So, just want to make sure that if still you don’t support TLS 1.2 for SFOS v.17.5 or we can do the manual minor upgrade without issues as explained above.

Thanks again for your Support.

Regards,

Hello,

Good day and Thanks for taking the time to respond with details.

What I'd recommend forward is the upgrade path option, in v18.x or later - TLS1.2 is enforced and the feature is supported https://docs.sophos.com/releasenotes/index.html?productGroup and support for 17.5.x isn't available as stated on the URLs you shared in which the information is still applicable today.

Also by upgrading to the latest/supported software - "you can continue to receive support as long as support contract is in effect until the End of Life (EoL) of the software version or the product." - Kindly refer here: https://docs.sophos.com/support/help/en-us/lifecycle/sf/index.html#maintained-software-releases

Hope this helps. Thank you for your patience and thank you for choosing Sophos. 

Thanks again Mr. Raphael for your detailed reply.

Will follow your recommendation by upgrading to 18.x which has the TLS 1.2 enforced.

Thanks for your Support.

Regards,