The early access program for Sophos Firewall OS v19 is kicking off today delivering Xstream SD-WAN capabilities.
Earlier this year, we launched the powerful new XGS Series firewalls with dedicated Xstream Flow Processors to accelerate SD-WAN, SaaS, and cloud traffic. We then followed that with an extremely easy way to orchestrate complex SD-WAN overlay networks in Sophos Central. And today, we’re introducing Xstream SD-WAN.
Sophos Firewall OS v19 includes several new and exciting SD-WAN capabilities including SD-WAN profiles with multi-gateway support and performance SLA link selection, as well as performance monitoring tools, SD-WAN logging, and much more.
Xstream FastPath Acceleration of IPsec VPN tunnel traffic will also be part of SFOS v19 and is still being finalized for inclusion in the next EAP phase.
All this adds up to Xstream SD-WAN – delivering extreme new levels of networking flexibility and performance – all integrated into your firewall.
Check out the detailed PDF list of What’s New in the SFOS v19 Early Access Program.
Watch brief demo videos for many of the new features:
Of course, SFOS v19 also includes all the other great enhancements in SFOS v18.5 MR2 which will be popping up in your consoles as an update any day now.
Sophos Firewall OS v19 EAP1 (Build 244) is a fully supported upgrade from v17.5 MR14 and later, v18 MR3 and later and all previous versions of v18.5 except the latest v18.5 MR2.
Please visit the SFOS v19 EAP Registration Page to get started.
Once you’re up and running, please provide feedback through your Sophos Firewall's feedback mechanism (top right of every screen on your Firewall). Also visit our EAP Community Forums to share your experience with others.
Note: Please do not call Sophos Support for issues related to the EAP. Troubleshooting and support for all EAP versions is handled solely through the online Sophos Community EAP Forums.
Please be on the lookout for brief email surveys over the course of the EAP. These can be extremely helpful in shaping the release, and don't worry, we value your time and will ensure they won't take long to complete.
What do you miss in ZTNA?
Unfortunately, the NPS-based approach is not nearly as robust as a browser-based auth flow. We often see timing issues. Also, for RADIUS, MFA methods are limited to out-of-band options (push, phone).
I agree. The ZTNA product is not really finished from my point of view. Sophos is really lagging in this area. All other major vendors have supported SAML-bases VPN auth for years.
It will be included in V19.0 EAP2.
Would be really cool, if you could implement the "Internet IPv4-Object" in the Setup-Defaults (https://support.sophos.com/support/s/article/KB-000037154?language=en_US). That's such a great improvement and you even did a KB for that... so implmenting it as a default wouldn't be that much of a hassle?