In a previous article we covered how to use Sophos UTM to establish an IPSEC VPN tunnel. IPSEC VPNs are great for a number of reasons, but they have a big drawback when it comes to NAT traversal. While Sophos UTM supports NAT-t, where one side is behind a NAT, you run into connectivity issues when both sides are […]
Anyone who has ever had to deliver application traffic over a WAN has no doubt run into the issue of trying to determine how their application would perform for a remote user.
In this article I will outline some of the issues with WAN delivery, and then move on to some easy WAN emulation tools to help simulate the conditions […]
Sophos UTM is a great Reverse Proxy solution. However, it currently lacks the capability to redirect a request.
There are several reasons you might want to redirect a site, but the most common scenario is to temporarily take a site offline and display a ‘Site Under Maintenance’ page instead. This is far better for a public site than to simply drop […]
This article highlights an issue in Sophos UTM where user information is not logged when files are downloaded and scanned by Sophos UTM. It shows how this issue affects reports (both the the web usage reports on Sophos UTM, and in Fastvue Sophos Reporter), and how to work around the issue.
How Sophos UTM logs scanned file downloads
When downloading a […]
In this article we will show how to integrate Sophos Endpoint Protection’s Web Control module with Sophos UTM using Sophos Enterprise Console (SEC) policies. This method is suitable for large deployments that utilize one or more SECs.
This article dives into how small to medium sized organizations can use Sophos UTM Endpoint Protection to protect and manage their endpoints without any additional management infrastructure. It explains the features and limitations of using Endpoint Web Control policies vs the UTM’s full Web Protection policies, as well as how to report on web browsing activity of both on and off premises devices.
Google’s Data Saver feature can reduce the amount of data Chrome browsers download in order to load a web page. It sounds useful and harmless. Who wouldn’t want to save some bandwidth, speed up web browsing and save on mobile data charges?
Before rolling out or promoting the feature to your users, read this article first to be aware of how Google Data Saver works, and its implications on security, privacy and web activity reporting in your organization.
Since Google made the decision to implement HTTPS across all their web properties (including YouTube), you can report that someone has been to youtube.com, but not what videos they were watching. Likewise, you can report that someone has visited google.com, but not what they searched for.
Fortunately, many Next Gen Firewalls, UTMs and Secure Web Gateways have a HTTPS Inspection feature that gets around this problem.
In this article I will show you how to selectively apply HTTPS Inspection to Google and YouTube using Sophos UTM, and how to report on YouTube videos and Google searches using Fastvue Sophos Reporter.
Sophos UTM’s Web Application Firewall may detect vulnerabilities in your web application that are not necessarily a problem. This article provides tips on how to investigate and remove these false positives, with the least impact on overall security.