Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Replies 108 replies
  • Subscribers 29 subscribers
  • Views 17098 views
  • Users 0 members are here
Options
Suggested

Sophos Firewall: v19.0 EAP1: Feedback and experiences

LuCar Toni

Release Notes: https://community.sophos.com/sophos-xg-firewall/sfos-v19-early-access-program/b/announcements/posts/sophos-firewall-v19-xstream-sd-wan

Be aware: V18.5 MR2 is not supported to migrate. If you want to upgrade from MR2, do a downgrade to V18.5 MR1. You will loose all configuration changes done in MR2. 

If you occur an potential Bug: Please raise a ticket with the "Feedback" Option in the V19.0 Webadmin! 



Feedback
[bearbeitet von: LuCar Toni um 2:07 PM (GMT -8) am 9 Dec 2021]
Parents
  • 0

    Um what?

    Sophos Firmware Version SFOS 19.0.0 EAP1-Build244

Device Management

    1.  Reset to Factory Defaults
    2.  Show Firmware(s)
    3.  Advanced Shell
    4.  Flush Device Reports
    0.  Exit

    Select Menu Number [0-4]: 3

    Advanced shell is not available.

    Will we be limited to Device Console for debugging?

  • 0 in reply to Florian SM

    This is completely stupid. I mean, I can understand to put a disclaimer somewhere in the process of accessing the advanced shell (maybe through enabling it via web gui), but a lot of home users are also professionals having a home lab environment. How could we tinker, if this feature is disabled?

    Also the only way to bypass certain limitations (like the upload size in WAF through Exchange OWA) is by modifying certain values in psql and that is only possible through the advanced shell.

    This is a huge step backwards!

  • 0 in reply to ddcool

    I can only second this. I would understand removing shell access completely, like on other firewalls. Just for home/trial licenses makes no sense IMHO. Big +1 one home labs of professionals.

  • 0 in reply to ddcool

    +1, removing the Advanced Shell for Home Users is a big mistake and the upload size for WAF using OWA is a pretty good example why. If Sophos is serious about this, then they'll lose the only thing left that stopped us from moving to another product. There are so many flaws in SFOS compared to UTM that don't get fixed, even in years (just like the WAF upload size), that this step is just another coffin nail for Sophos.

  • 0 in reply to ddcool

    I hear you. At the same time, does Cisco, Fortinet, PAN, etc, have home editions of their firewalls that are free? I don't think you can install there software on your own hardware. My guess is that Cisco/Fortinet/PAN more prestigious and perhaps there's a lot of old equipment that can be bought cheaply when its dumped by companies, so maybe that's the way they serve the Home Lab users?.

    Maybe Sophos should instead have a Home Lab edition that somehow is attached to a corporate license, specifically for this use case? PAN had cheaper versions of their low-end firewall for "lab" use, for example.

Reply
  • 0 in reply to ddcool

    I hear you. At the same time, does Cisco, Fortinet, PAN, etc, have home editions of their firewalls that are free? I don't think you can install there software on your own hardware. My guess is that Cisco/Fortinet/PAN more prestigious and perhaps there's a lot of old equipment that can be bought cheaply when its dumped by companies, so maybe that's the way they serve the Home Lab users?.

    Maybe Sophos should instead have a Home Lab edition that somehow is attached to a corporate license, specifically for this use case? PAN had cheaper versions of their low-end firewall for "lab" use, for example.

Children
Unfiltered HTML