Latest posts

Sophos UTM 9.503-4 released

Martin 01/09/2017

Due to a little bug with samba and missing libraries, that will get you into problems with AD join, Sophos has released a minor update for that problem in particlular: Up2Date 9.503004 package description: Remark: System will be rebooted News: Hotfix Release Bugfix: Fix [NUTM-8702]: [Web] After 9.503-3 Update: net: error while loading shared libraries RPM packages contained: samba-4.6.5-3.g71f179b.rb1.i686.rpm ep-release-9.503-4.noarch.rpm ftp://ftp.astaro.com/UTM/v9/up2date/u2d-sys-9.503003-503004.tgz.gpg

Read More Sophos UTM 9.503-4 released

Sophos UTM: Setting up DKIM for mail security

Martin 01/09/2017

Sophos UTM mail security has many features, it also supports DKIM (DomainKeys Identified Mail), which allows the UTM to cryptographically sign outgoing messages. Unfortunately it’s not “that” easy to set up, like any other UTM feature, but that’s not the UTM’s fault 🙂 I will try to explain how to make things work here: Firstly you have to generate som key pairs, which we need to use to identify your mail, I will be using OpenSSL… Sophos UTM: Setting up DKIM for mail security

Read More Sophos UTM: Setting up DKIM for mail security

Sophos UTM 9.503-3 released

Martin 24/08/2017

Sophos has released 9.503-3 today, you can download it here: ftp://ftp.astaro.com/UTM/v9/up2date/u2d-sys-9.502004-503003.tgz.gpg Release notes: Up2Date 9.503003 package description: Remarks: System will be rebooted Configuration will be upgraded Connected REDs will perform firmware upgrade Connected Wifi APs will perform firmware upgrade News: Maintenance Release Bugfixes: Fix [NUTM-7891]: [AWS] awslogsd.log is beeing flooded with logmessages Fix [NUTM-3196]: [Access & Identity] Overlapping backend user prefetches may not be executed Fix [NUTM-7943]: [Basesystem] Ntpd permanently restarting on slave node Fix… Sophos UTM 9.503-3 released

Read More Sophos UTM 9.503-3 released

Sophos UTM: TCP/UDP Ports used by Sophos RED

Martin 09/08/2017

When you have the UTM behind another firewall and want to use the RED technology, you will have to NAT the following ports through the perimeter firewall: Note: it has been seen several times that some ISP’s block the traffic of UDP 3410 due to it’s triggering of Intrusion Prevention Systems, so be aware of that, if things are not working in the beginning, then contact your ISP.

Read More Sophos UTM: TCP/UDP Ports used by Sophos RED

Sophos UTM: How to bypass individual WAF rules

Martin 09/08/2017

How to fix a false positive On Sophos UTM, mod_security can detect a far greater number of attacks, but also experiences a larger number of false positives. If your website is experiencing a lot of false positives, the best way to resolve them is to disable the specific rule IDs that are being detected. To determine the rule IDs that are being matched, you’ll need to check the Web Application Firewall log while browsing to… Sophos UTM: How to bypass individual WAF rules

Read More Sophos UTM: How to bypass individual WAF rules

Sophos UTM: Data disk filling up – due to coredumps

Martin 07/08/2017

Sometimes Sophos releases updates or patterns that corrupts a function in the UTM and make that function crash! – Everytime a core dump is generated, and that is filling up the data disk. If that happens you eventualle see a notification land in your mailbox saying: Data Disk is filling up – please check. Current usage: 82% When logging into webadmin, you may see this: Clearly the data disk is getting full! To fix this,… Sophos UTM: Data disk filling up – due to coredumps

Read More Sophos UTM: Data disk filling up – due to coredumps

Sophos UTM 9.502-4 soft-released

Martin 11/07/2017

Finally, to make up for the mistake in 9.501, MR2 has been soft-released today: And can be found on the FTP server as usual: ftp://ftp.astaro.de/UTM/v9/up2date/u2d-sys-9.501005-502004.tgz.gpg ftp://ftp.astaro.de/UTM/v9/up2date/u2d-sys-9.501005-502004.tgz.gpg.md5   The changelog: News Maintenance Release Remarks System will be rebooted Configuration will be upgraded Connected REDs will perform firmware upgrade Connected Wifi APs will perform firmware upgrade Bugfixes NUTM-8127 [AWS] Link to CloudFormation console during cloudupdate is not working NUTM-3213 [Access & Identity] Inconsistent behaviour/state when deleting a… Sophos UTM 9.502-4 soft-released

Read More Sophos UTM 9.502-4 soft-released

Active Directory: Changing home folder servername

Martin 04/07/2017

When migrating filservers and you are using the “Home Folder” setting of an AD user’s object like here:   From: To: It would be great just to edit all objects in bulk, with this script, it is possible:  

Remember servername is CASE SENSITIVE! So if the oldserver is all with small letters, and you type them with CAPS, it will change nothing 🙂 Credits go to: https://www.experts-exchange.com/members/justinyeung.html  

Read More Active Directory: Changing home folder servername

Microsoft Exchange: Restart all services with PowerShell

Martin 30/06/2017

This little “quickie” can do the job for your, without having to do it manually in service manager 🙂  

 

Read More Microsoft Exchange: Restart all services with PowerShell