Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 3 subscribers
  • Views 2089 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Firewall?

NewImage
Just realized that nowhere does it actually say that Endpoint protection includes a client side firewall. 
Is this true, should I be using windows firewall?


This thread was automatically locked due to age.
Parents
  • 0
    Is this true, should I be using windows firewall?


    I prefer to leave it off on devices behind the UTM.  If a laptop is always used with a full tunnel to the UTM, then it is also "behind" the UTM.  In larger organizations where internal firewalling makes sense, it will be done with actual firewalls.

    Cheers - Bob

    Sorry for any short responses!  Posted from my iPhone.
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    Is this true, should I be using windows firewall?


    I prefer to leave it off on devices behind the UTM.  If a laptop is always used with a full tunnel to the UTM, then it is also "behind" the UTM.  In larger organizations where internal firewalling makes sense, it will be done with actual firewalls.

    Cheers - Bob

    Sorry for any short responses!  Posted from my iPhone.
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
  • 0 in reply to BAlfson
    Currently the UTM Endpoint does not include a client firewall.  The full Sophos Endpoint product does... so yes, if you are in a situation where you need a client firewall (and we actually recommend it even behind a UTM, to protect one host from another on the same subnet for instance, especially in DMZ deployments -- and of course, mobile users with laptops as well), you should use, at a minimum, your OS firewall.

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.

  • 0 in reply to BAlfson
    The laptops use split tunnels. Our data line here is not that big, so why traffic youtube videos and add latency to connections.

    I hope Sophos plans on adding more features from EndUser to endpoint. Can do almost all the device control with group policy.
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?