We’re happy to announce that the early entry program (EAP) is now underway for the most recent Sophos Firewall launch. This replace brings a number of Safe by Design enhancements and plenty of of your prime requested options.
Safe By Design
Web going through infrastructure has not too long ago come beneath rising assaults to use vulnerabilities and different weaknesses to realize a foothold on networks.
As , at Sophos, we take safety very significantly and during the last a number of releases we now have invested in implementing many Safe By Design ideas to harden the product and make it a way more tough goal. This launch takes Safe by Design to a complete new degree.
Sophos Firewall Well being Examine
A robust safety posture relies on protecting your firmware updated and guaranteeing your firewall is optimally configured. Sophos Firewall v22 makes it a lot simpler to judge and deal with the configuration of your firewall with the brand new Well being Examine characteristic.
This new characteristic evaluates dozens of various configuration settings in your firewall and compares them with CIS benchmarks and different finest practices, offering instant insights to areas which may be in danger. It would establish all high-risk settings and supply suggestions with fast drill-down to the areas of concern so you may simply deal with them.
The well being test standing is displayed on a brand new Management Heart widget and a full report is on the market beneath the “Firewall well being test” predominant menu merchandise.
Different Safe By Design enhancements:
- Subsequent-gen Xstream Structure – introduces an all-new management airplane re-architected for optimum safety and scalability to take us into the longer term. The brand new management airplane permits modularization, isolation, and containerization of providers like IPS for instance, to run like “apps” on the firewall platform. It additionally permits full separation of privileges for added safety. As well as, high-availability deployments now profit from a self-healing functionality that’s constantly monitoring system state and fixes deviations between units robotically.
- Hardened kernel – The following-gen Xstream Structure in Sophos Firewall OS is constructed upon a brand new hardened kernel (v6.6+) that gives enhanced safety, efficiency, and scalability to maximise present and future {hardware}. This new kernel presents tighter course of isolation and higher mitigation for side-channel assaults in addition to mitigations for CPU vulnerabilities (Spectre, Meltdown, L1TF, MDS, Retbleed, ZenBleed, Downfall). It additionally presents hardened usercopy, stack canaries, and Kernel Tackle Area Format Randomization (KASLR).
- Distant integrity monitoring – Sophos Firewall OS v22 now integrates our Sophos XDR Linux Sensor that allows real-time monitoring of system integrity, together with unauthorized configuration, rule exports, trojan horse execution makes an attempt, file tampering, and extra. This helps our safety groups, who’re proactively monitoring our whole Sophos Firewall set up base to higher establish, examine, and reply extra shortly to any assault. That is an added safety functionality that no different firewall vendor offers.
- New anti-malware engine – Sophos Firewall OS v22 integrates the most recent Sophos anti-malware engine with enhanced zero-day real-time detection of rising threats utilizing world status lookups. It takes full benefit of SophosLabs’ large cloud database of recognized malicious information, up to date each 5 minutes or much less. It additionally introduces AI and ML mannequin detections and delivers enhanced telemetry to SophosLabs for accelerating their rising risk detection evaluation.
Different safety and scalability enhancements:
- Firmware updates through SSL and certificates pinning ensures authenticity
- Energetic Risk Response logging enhancements enhanced visibility
- NDR Necessities risk rating is included in Logs for added insights
- NDR Necessities knowledge middle choice for knowledge residency necessities
- On the spot net class alerts for schooling establishments
- XML API entry management enhancements with added granularity
- TLS 1.3 assist for system entry for the WebAdmin console and portals
Streamlined administration and high quality of life enhancements:
- Enhanced navigation efficiency
- {Hardware} monitoring for SNMP with a downloadable MIB
- sFlow Monitoring for real-time visibility
- NTP server settings defaults to “Use pre-defined NTP server”
- UI enhancements for XFRM interfaces with pagination and search/filter choices
SG UTM options:
With Sophos UTM heading towards end-of-life quickly (July 30, 2026), some migrating clients will respect these added options:
- SHA 256 and 512 assist for OTP tokens
- MFA assist for WAF form-based authentication
- Audit path logs with earlier than and after monitoring to fulfill the most recent NIST requirements
Get the complete particulars
Obtain the complete What’s New Information for an entire overview of all the nice new options and enhancements in v22.
Get began in the present day
You may obtain the improve bundle or installer for v22 from the Sophos Firewall v22 EAP Registration Web page. Merely submit your particulars and the obtain hyperlinks shall be emailed to you immediately.
All assist throughout the EAP shall be by way of our boards on the Sophos Firewall Group.
Please present suggestions utilizing the choice on the prime of each display in your Sophos Firewall as highlighted under in crimson or through the Group Boards.
![AI electronic mail topic traces that drive 3x extra income and truly convert [+ exclusive insights]](https://blog.aimactgrow.com/wp-content/uploads/2025/11/ai-email-optimization-1-20251014-4500151-1.webp-120x86.webp)
