To confirm, yes - the release for v18 MR3 has been unfortunately delayed and will not be released this week. Please stay tuned next week, as we'll continue to follow up with the development teams to share updates for the Community.
I've gone ahead and upgraded my production XG's to MR2. Even though there aren't any release notes its been running well on my home XG since I installed it. Who knows when MR3 will drop.
it does seem like it but it's not, I use both (UTM & XG) and until the stability issues are ironed out (on both sides), these are not what I would class as an Enterprise grade products, and the support is just shocking most of the time. please note that when you get through to someone who knows then your issue
I have a ticket with them right now which is the same fault as 4 months ago, and it took Sophos 4 months to fix it before ... irony, and this fault first became visible to me 3 years ago.
Are we still thinking weeks or months at this point?
I get you guys are doing your best, but my customers are really wanting to upgrade from 17 to 18 mr3. Just throw me another estimated date at least so I can make sure they stay happy. :)
I can only recommend you one thing ... Don't. v18 is mostly about two things. Decoupled NAT, and TLS/SSL Inspection rules. The later does not work. Source of continous problems and slowing down everything to a crawl. You can live with coupled NAT. So. Wait at least another year. Seriously. Other wise you'll be part of Sophos Q&A team liking it or not. And your customers will want to hang you.
I can only recommend you one thing ... Don't. v18 is mostly about two things. Decoupled NAT, and TLS/SSL Inspection rules. The later does not work. Source of continous problems and slowing down everything to a crawl. You can live with coupled NAT. So. Wait at least another year. Seriously. Other wise you'll be part of Sophos Q&A team liking it or not. And your customers will want to hang you.
Big_Buckis right about the TLS/SSL Inspection Rules; it just doesn't work. You will pull your hair out trying to troubleshoot why sites randomly either fail to load or load extremely slowly. Loved getting the panic call from our HR people who couldn't process payroll because the site wouldn't load halfway through. The answer you'll get from Sophos is "Make an exception" but when you observe that somewhere around 30% of sites have problems, that's not a practical or realistic or serious answer.
Part of the reason I've been so interested in MR3 is the hope that there are major improvements to the TLS/SSL engine, but I'm not holding my breath anymore.
Make exception rules was what I was told too. If you look at Sophos own built-in exception rules (for Microsoft updates for example), you'll notice that many of them disable ssl inspection very widely to a point it is not usefull anymore.
