Sophos Launches New XG Firewall Version, Adds New Application Visibility And Deployment Options

Printer-friendly version Email this CRN article

Sophos continues to add to its firewall capabilities, announcing on Tuesday the launch of the latest version of its Sophos XG Firewall.

The Sophos XG Firewall Version 17 looks to fill the gaps in areas that firewalls traditionally have lacked visibility or capability around, Senior Vice President of Enduser and Network Security Group Dan Schiappa.

"I think this will be without a doubt the best firewall we have ever delivered," Schiappa said.

[Related: Boost For Partners: 7 Ways Sophos Is Raising The Innovation Bar]

One of the "marquee features" of the launch is the new Synchronized App Control capability, which leverages information from the endpoint to classify previously unclassified network traffic and applications through the firewall. Schiappa said this is important because unclassified network traffic accounts for around 60 percent of traffic through the firewall, and is the equivalent of "an airport scanner allowing 60 percent of luggage to through without screening."

"It exponentially increases the visibility and protective nature of the firewall," Schiappa said of Synchronized App Control.

The new Sophos XG Firewall also adds a policy test simulator so that partners can test the effects of policy creation on existing policies. Schiappa said this feature has been a request by many partners – as policies get more complicated, a new policy could potentially block or undo existing policies.

Finally, Sophos has added the ability to run the firewall in tap mode, allowing partners to either use it in discover mode or get the benefits of Sophos alongside a different firewall brand. Schiappa said the new XG Series hardware appliances would include new bypass ports to aid in this capability. Similar to Intercept X, Schiappa said this launch would allow partners to address the market of customers who have already invested in a competitive solution to get the benefits of Sophos' synchronized security strategy.

"This launch provides the ability to take the synchronized security story that may already have vendors in place, but don't provide this capability or depth. Now we have solved that problem and saved the headache of rip and replace," Schiappa said. "You can run it alongside of it and plug the missing gaps in security," he said.

Schiappa said Sophos has also made incremental improvements to some of the features of the firewall, including improving usability around the log viewer and firewall rule management. The changes were designed to improve usability and quality of some of the firewall basics, he said.  

Printer-friendly version Email this CRN article