When you have first installed Plesk Onyx, and you have forwarded port 20,21 to your Plesk server, you will find that the client is being redirected to passive ports, theese ports needs to be defined in your firewall and also in the Proftpd server inside Plesk. For Plesk: Create a new file “touch /etc/proftpd.d/passive.conf” Edit the file with ex. nano: “nano /etc/proftpd.d/passive.conf” Add the following lines: <Global> PassivePorts 57000 59000 </Global> Then save the file,… PLESK: Enable passive FTP ports
Due to a little bug with samba and missing libraries, that will get you into problems with AD join, Sophos has released a minor update for that problem in particlular: Up2Date 9.503004 package description: Remark: System will be rebooted News: Hotfix Release Bugfix: Fix [NUTM-8702]: [Web] After 9.503-3 Update: net: error while loading shared libraries RPM packages contained: samba-4.6.5-3.g71f179b.rb1.i686.rpm ep-release-9.503-4.noarch.rpm ftp://ftp.astaro.com/UTM/v9/up2date/u2d-sys-9.503003-503004.tgz.gpg
Sophos UTM mail security has many features, it also supports DKIM (DomainKeys Identified Mail), which allows the UTM to cryptographically sign outgoing messages. Unfortunately it’s not “that” easy to set up, like any other UTM feature, but that’s not the UTM’s fault 🙂 I will try to explain how to make things work here: Firstly you have to generate som key pairs, which we need to use to identify your mail, I will be using OpenSSL… Sophos UTM: Setting up DKIM for mail security
Sophos has released 9.503-3 today, you can download it here: ftp://ftp.astaro.com/UTM/v9/up2date/u2d-sys-9.502004-503003.tgz.gpg Release notes: Up2Date 9.503003 package description: Remarks: System will be rebooted Configuration will be upgraded Connected REDs will perform firmware upgrade Connected Wifi APs will perform firmware upgrade News: Maintenance Release Bugfixes: Fix [NUTM-7891]: [AWS] awslogsd.log is beeing flooded with logmessages Fix [NUTM-3196]: [Access & Identity] Overlapping backend user prefetches may not be executed Fix [NUTM-7943]: [Basesystem] Ntpd permanently restarting on slave node Fix… Sophos UTM 9.503-3 released
When you have the UTM behind another firewall and want to use the RED technology, you will have to NAT the following ports through the perimeter firewall: Note: it has been seen several times that some ISP’s block the traffic of UDP 3410 due to it’s triggering of Intrusion Prevention Systems, so be aware of that, if things are not working in the beginning, then contact your ISP.
How to fix a false positive On Sophos UTM, mod_security can detect a far greater number of attacks, but also experiences a larger number of false positives. If your website is experiencing a lot of false positives, the best way to resolve them is to disable the specific rule IDs that are being detected. To determine the rule IDs that are being matched, you’ll need to check the Web Application Firewall log while browsing to… Sophos UTM: How to bypass individual WAF rules
Sometimes Sophos releases updates or patterns that corrupts a function in the UTM and make that function crash! – Everytime a core dump is generated, and that is filling up the data disk. If that happens you eventualle see a notification land in your mailbox saying: Data Disk is filling up – please check. Current usage: 82% When logging into webadmin, you may see this: Clearly the data disk is getting full! To fix this,… Sophos UTM: Data disk filling up – due to coredumps
Finally, to make up for the mistake in 9.501, MR2 has been soft-released today: And can be found on the FTP server as usual: ftp://ftp.astaro.de/UTM/v9/up2date/u2d-sys-9.501005-502004.tgz.gpg ftp://ftp.astaro.de/UTM/v9/up2date/u2d-sys-9.501005-502004.tgz.gpg.md5 The changelog: News Maintenance Release Remarks System will be rebooted Configuration will be upgraded Connected REDs will perform firmware upgrade Connected Wifi APs will perform firmware upgrade Bugfixes NUTM-8127 [AWS] Link to CloudFormation console during cloudupdate is not working NUTM-3213 [Access & Identity] Inconsistent behaviour/state when deleting a… Sophos UTM 9.502-4 soft-released
Remember servername is CASE SENSITIVE! So if the oldserver is all with small letters, and you type them with CAPS, it will change nothing 🙂 Credits go to: https://www.experts-exchange.com/members/justinyeung.html
The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.