Thread Info
  • State Suggested Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 103 replies
  • Answers 3 answers
  • Subscribers 29 subscribers
  • Views 30810 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos UTM Retirement / EOL announced

seroal

Finally, Sophos announced the EOL of UTM. Interestingly, the EOL does not apply to Sophos UTM AWS....



This thread was automatically locked due to age.
  • 0 in reply to Jay Jay

    The other free alternatives --for home use-- right now would be: 

    1) Using the Zenarmor plugin with OPNsense/PfSense. *BUT* the free and paid home editions do not support HTTPS inspection for all ports. Full DPI is only (going to be) available in the business license.

    2)The OpenAppID addon for Snort used in pfSense. This turns PfSense into a layer 7 application layer firewall.

    3) Untangle NG Firewall Free v16. There is a free version available but it's difficult to find the download and I could not find a feature comparison that included the free version.

    If you can think of any other free alternatives let us know.

    Of course with paid versions you always have the well known players: Fortinet, SonicWall, Palo Alto, and others....

  • 0 in reply to alan weir

    Untangle does not work without uplink to the vendor cloud. so not useable for me, home or busines, doesn't matter.

    i dont like vendors that call home and for me it's a security risk in an firewall enviroment.

     

  • 0 in reply to WolfgangS

    By the way: did anyone ask sophos how much money they want for the UTM 9 ? Or if it is for sale ?

  • 0 in reply to WolfgangS
    WolfgangS said:

    Untangle does not work without uplink to the vendor cloud. so not useable for me, home or busines, doesn't matter.

    i dont like vendors that call home and for me it's a security risk in an firewall enviroment.

    Almost all NGFWs call home, including Sophos, for AV pattern updates and to check for firmware. The home version of SFOS does not offer Heartbeat or Application synchronization so no need to worry. Disable the Sophos Assistant, un-register the firewall with Sophos Central, disable automatic hotfix installation, and telemetry and it should not be calling home.

  • 0 in reply to alan weir
    alan weir said:
    The home version of SFOS does not offer Heartbeat or Application synchronization so no need to worry.

    I thought this was allowed via Sophos Central through the XG firewall?

    OPNSense 64-bit | Intel Xeon 4-core v3 1225 3.20Ghz
    16GB Memory | 500GB SSD HDD | ATT Fiber 1GB
    (Former Sophos UTM Veteran, Former XG Rookie)

  • 0 in reply to Amodin

    Synchronized Application Control requires Security Heartbeat to be enabled which is not available.


  • 0 in reply to alan weir

    Ah good to know, thanks.  I haven't enabled that.

    All other things aside, I think I'll be moving on to another product within this year.

    OPNSense 64-bit | Intel Xeon 4-core v3 1225 3.20Ghz
    16GB Memory | 500GB SSD HDD | ATT Fiber 1GB
    (Former Sophos UTM Veteran, Former XG Rookie)

  • 0 in reply to Amodin

    You could look into Ubiquity's line of Dream Machines/Routers. The release of the Unify OS version 3 now adds support for running an OpenVPN server right on the Dream Router/Pro. 

  • 0 in reply to alan weir

    Well, u can't use untangel without online connection. It's that the software look for updates , Av pattern and stuff.

    u can't use it if your are not online. > no go.

  • 0 in reply to WolfgangS

    Why would you use a firewall anyways unless you were online? What would be the point of it unless you were online?

Unfiltered HTML