Some comments on the setup procedure and the default settings:
The device activation and license synchronization is just crap. I made three test-installations so far and none was straight forward. Can you please go back to the old behavior to set up the device with a trial-license for some days. I just think about installing the devices at the customer and we have to wait and retry and do some weird things for some hours just to get the license working and during this time we have no chance to do the real work and migrate the policy... So the first impression of the customer will not be the cool configuration of the device but some licensing weirdnesses.
As for the default settings: Do you really think it is a good idea for a security device to have administration over insecure http? And to have a login with a default password? Please go back to the UTM way of https and a forced admin password.
Guest User!
You are not Sophos Staff.