Disabling/enabling the DHCP server in question should accomplish this.
providing a mechanism to view active devices and monitor traffic for active devices improving network protection so it’s easier to investigate blocked packets
What improvement would you make in the Flow Monitor? - in the Firewall Live Log?
improving on SSL and IPSEC
I don't have much use for Site-2-Site SSL, but if some large customer wants to have it interoperate with OpenVPN, I'm sure that will be on the list. I hope that the improvements are to IPsec. Sophos had a great year last year, but much business was lost because charon has not yet replaced pluto meaning there's no IKEv2, etc. Plus, I think StrongSWAN may already have stopped any work on V4.
Disabling/enabling the DHCP server in question should accomplish this.
providing a mechanism to view active devices and monitor traffic for active devices improving network protection so it’s easier to investigate blocked packets
What improvement would you make in the Flow Monitor? - in the Firewall Live Log?
improving on SSL and IPSEC
I don't have much use for Site-2-Site SSL, but if some large customer wants to have it interoperate with OpenVPN, I'm sure that will be on the list. I hope that the improvements are to IPsec. Sophos had a great year last year, but much business was lost because charon has not yet replaced pluto meaning there's no IKEv2, etc. Plus, I think StrongSWAN may already have stopped any work on V4.
Disabling/enabling the DHCP server in question should accomplish this.
What improvement would you make in the Flow Monitor? - in the Firewall Live Log?
I don't have much use for Site-2-Site SSL, but if some large customer wants to have it interoperate with OpenVPN, I'm sure that will be on the list. I hope that the improvements are to IPsec. Sophos had a great year last year, but much business was lost because charon has not yet replaced pluto meaning there's no IKEv2, etc. Plus, I think StrongSWAN may already have stopped any work on V4.
Cheers - Bob
The only way to clear the dhcp lease tables is to delete the log files.
I find both the network usage and network protection pages to be very cumbersome for browsing and investigationg usage and dropped packets, as well as buggy. For example, if you are looking at clients and servers using a particular service, you have to cut and paste the ip address and there is no easy way to go back and forth. If you press back, you get logged out of webadmin. The usability is pretty bad. It's not uncommon when I look at a service that is reporting dropped packets and click on it for detail, there are no listed addresses. When I'm experiencing dropped packets, I'd like to be able to investigate where they are from to determine if it's an attack or if I should be opening the firewall. Ideally, I'd like to be able click on a service and open up a real-time log so I can watch it. It's difficult to do that currently.
As I said previously, I don't disagree that the type of openvpn support I and others are requesting is not generally business specific, however, considering the increasingly intrusive surveillance that we are experiencing, many people would like to have the option to use a VPN service.
Anyway, I don't have any grandiose illusions that Sophos is going to change their direction based on my opinion. I'm just stating it for the record. My son and I are generally happy with UTM and impressed with the overall capability and reliability, but many of the features Sophos is developing aren't high up on our needs, whereas the things we would like are not getting done. That's why we are taking a look at pfsense. We would have done it sooner, but it's only recently that pfsense will run on hyper-v.
