Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Sophos Firewall: Best practices for securing your firewall

Disclaimer: This information is provided as-is for the benefit of the Community. Please contact Sophos Professional Services if you require assistance with your specific environment.


Hi Community,

This document focuses on providing baseline guidance to secure the Sophos Firewall to a minimum level. The document won’t guide each Sophos Firewall feature that may, in turn, secure internal network devices and resources (a full, exhaustive Sophos Firewall best practice guide will be published in due course).

Note: This guide won’t include advice and guidance on the following topics, which are considered to be out of scope:

  • Outsourcing management
  • Legal Regulations
  • Local/Regional corporate requirements
  • Business Continuity
  • Disaster Recovery planning
  • Network Security Architecture & Design
  • Risk Management
  • Information Security Governance

One size does not fit all; some security recommendations will apply to a customer, whereas others won’t. Sophos and our partners provide award-winning Professional Services that are happy to provide best-practice network security design, implementation, and training tailored to the needs of our customers.

While Sophos firewall is one of the most sophisticated, multilayered, leading-edge security appliances in use today, it’s, as with most firewalls, ineffective right out of the box. Administrators often concentrate on configuring firewall features and functions to protect internal networks and resources before securing the firewall. 

Check out the full guide here




Added TAG
[edited by: Erick Jan at 3:37 AM (GMT -7) on 28 Oct 2024]