If you've already registered for the v18 EAP and upgraded your XG Firewall to any of the older v18 EAP firmware, there's no need to re-register to gain access to the v18 EAP 3 Refresh-1 release. You will see a notice in the firewall UI to upgrade through the Up2Date service.
Please remember, this is still an early build of the v18 release so there are some things we’d like to bring to your attention before you download the firmware and begin testing it.
XG Firewall v18 introduces a new more powerful and flexible NAT implementation that has more in common with the approach being used in many other firewalls.
XG Firewall now features a dedicated NAT rule table that is traversed from top to bottom. While linked NAT rule options still exist for organizations that appreciate that simplicity, you can now create source, destination or full NAT translation in a single rule that offers more power, flexibility and visibility.
What's new in this Refresh of EAP3 is the result of extensive partner and customer feedback and consultation. The team has enhanced the layout to the NAT rule creation screen and also added a convenient and easy wizard to create complete server access rules. These additions - as well as embedded help content, makes this new feature much easier to use and enables everyone to make the most of this powerful new capability.
Once you’re ready to go, we’ve got some great resources to help you get started:
Before upgrading to v18 EAP 3 Refresh-1 from an earlier version, there are a few things to note:
Communicating your experiences with the v18 EAP firmware is crucial to its success, so we want to hear from you! Please share your feedback via the Sophos Community or through your XG Firewall’s feedback mechanism in the user interface.
Thank you for taking the time to test the v18 EAP release. We’re excited about all the new features this release will bring to Sophos XG users and we appreciate your help making it happen!
Sincerely,
Your Sophos XG Firewall Product Team
Where's the download link?
This versions fixed lots of issues . but still internet disconnect for local network from time to time . i am using basic config without any app nor web filter . only 1 rule to allow internet for one subnet . i can ping the firewall but internet dont work unless i reboot sophos , this happened also in all EAP but was intense before . now it is just happen from time to time . i never faced this is version 17
This versions fixed lots of issues . but still internet disconnect for local network from time to time . i can ping the firewall but internet dont work unless i reboot sophos
Hi MarcKamel,
For Route based VPN, you can configure IPSec using "Tunnel Interface" connection type listening on WAN interface. And assign IP to auto-created XFRM Interface. And configure routing (Static, Dynamic, SD-WAN PBR), firewall and NAT rules as required.
Route based VPN simplifies VPN policy creation with larger/dynamic networks. Once configured, network topology changes don’t impact IPSec VPN. And it interoperates with non-Sophos route based VPN tunnels as well.
Good news but I can not find the change regarding the
Route Based VPN I see that it is the same like the old one I can not find any related route in both SD-WAN or static route to select or modify