{"id":17816,"date":"2020-02-25T09:21:37","date_gmt":"2020-02-25T17:21:37","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2020\/02\/25\/news-11549\/"},"modified":"2020-02-25T09:21:37","modified_gmt":"2020-02-25T17:21:37","slug":"news-11549","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2020\/02\/25\/news-11549\/","title":{"rendered":"New Sophos Central management and reporting for XG Firewall"},"content":{"rendered":"<p><strong>Credit to Author: Chris McCormack| Date: Tue, 25 Feb 2020 15:20:00 +0000<\/strong><\/p>\n<div class=\"entry-content\">\n<p>Today, XG Firewall\u2019s integration with Sophos Central gets a major boost with some exciting enhancements for managing multiple firewalls easily, and for the first time, providing access to your firewall reporting in the cloud.<\/p>\n<p>All <a href=\"https:\/\/www.sophos.com\/en-us\/products\/next-gen-firewall.aspx?cmp=40281\">XG Firewall<\/a> customers have access to these new capabilities at no extra charge. Simply log in to your Sophos Central account and add your firewalls to get started. It couldn\u2019t be any easier.<\/p>\n<h2>Group Policy Management<\/h2>\n<p>If you manage multiple firewalls, you will love the new group firewall management features in Sophos Central. They&#8217;ll make your life vastly easier by dramatically reducing the time it takes to roll out changes across multiple firewalls.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-64544\" src=\"https:\/\/news.sophos.com\/wp-content\/uploads\/2020\/02\/Picture-1-1.png\" alt=\"\" width=\"640\" height=\"214\" srcset=\"https:\/\/news.sophos.com\/wp-content\/uploads\/2020\/02\/Picture-1-1.png 974w, https:\/\/news.sophos.com\/wp-content\/uploads\/2020\/02\/Picture-1-1.png?resize=300,100 300w, https:\/\/news.sophos.com\/wp-content\/uploads\/2020\/02\/Picture-1-1.png?resize=768,256 768w\" sizes=\"auto, (max-width: 640px) 100vw, 640px\" \/><\/p>\n<p>Easily add firewalls to custom groups and take advantage of the new group policy tools to make changes to objects, policies, rules, or configuration items and have the system automatically roll those changes out to all firewalls in the group.\u00a0<img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-64545\" src=\"https:\/\/news.sophos.com\/wp-content\/uploads\/2020\/02\/Picture-2.png\" alt=\"\" width=\"640\" height=\"256\" srcset=\"https:\/\/news.sophos.com\/wp-content\/uploads\/2020\/02\/Picture-2.png 974w, https:\/\/news.sophos.com\/wp-content\/uploads\/2020\/02\/Picture-2.png?resize=300,120 300w, https:\/\/news.sophos.com\/wp-content\/uploads\/2020\/02\/Picture-2.png?resize=768,307 768w\" sizes=\"auto, (max-width: 640px) 100vw, 640px\" \/><\/p>\n<p>A comprehensive task queue allows you to monitor and audit all changes in real time or historically.<\/p>\n<p>These features add to the growing list of convenient XG Firewall management tools available in Sophos Central:<\/p>\n<ul>\n<li>Group firewall management (new with XG Firewall v18)<\/li>\n<li>Zero-touch deployment from Sophos Central (via a USB flash drive)<\/li>\n<li>Configuration backup storage and management<\/li>\n<li>One-click firmware updates<\/li>\n<li>Secure Single-Sign-On (SSO) device access<\/li>\n<li>Dashboard and alert status<\/li>\n<\/ul>\n<p>And of course, with Sophos Central, you have one console to manage all your Sophos cybersecurity products. A single pane of glass covers all your firewall management needs as well Intercept X for endpoints, servers, and mobile devices, and so much more.<\/p>\n<h2>Central Firewall Reporting<\/h2>\n<p>New firewall reporting in Sophos Central provides deep insights into your network security and activity \u2013 all at your fingertips.<\/p>\n<p>You no longer need to dive into each firewall device to get the information you seek. XG Firewall now shares log data directly with Sophos Central and provides flexible reporting tools that enable you to monitor, visualize, and analyze network activity directly in Sophos Central.<\/p>\n<p>With Central Firewall Reporting, you can create reports to fit your needs using one of the many pre-defined report templates and then customize it the way you want.<\/p>\n<p>Here are some of the key features:<\/p>\n<ul>\n<li>Up to seven days of historical reporting for free<\/li>\n<li>Rich, granular data organized into easy-to-understand reports<\/li>\n<li>Pre-defined, out-of-the-box report templates<\/li>\n<li>Flexible report table and charts allow you to customize each report<\/li>\n<li>Report Dashboard provides an at-a-glance view from the XG Firewall for network operational health, policy control events, and all security-driven events<\/li>\n<li>Visual representation of data displayed in graphical form<\/li>\n<li>Search and retrieval of all log data from the XG Firewall<\/li>\n<li>Support for XG Firewall integration into Sophos MTR Advanced<\/li>\n<\/ul>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-64546\" src=\"https:\/\/news.sophos.com\/wp-content\/uploads\/2020\/02\/Picture-3.png\" alt=\"\" width=\"640\" height=\"302\" srcset=\"https:\/\/news.sophos.com\/wp-content\/uploads\/2020\/02\/Picture-3.png 974w, https:\/\/news.sophos.com\/wp-content\/uploads\/2020\/02\/Picture-3.png?resize=300,142 300w, https:\/\/news.sophos.com\/wp-content\/uploads\/2020\/02\/Picture-3.png?resize=768,363 768w\" sizes=\"auto, (max-width: 640px) 100vw, 640px\" \/><\/p>\n<h2>Get started<\/h2>\n<p>This new functionality is rolling out to all Sophos Central accounts over the next few days. If you have a Sophos Central account and one or more XG Firewalls running v18, you will have everything you need to get started. And if you don\u2019t have a Sophos Central account, <a href=\"https:\/\/cloud.sophos.com\/manage\/login?cmp=40281\">create one for free<\/a> today to get started.<\/p>\n<p>Adding your firewalls into Sophos Central couldn\u2019t be easier. On your XG Firewalls, simply navigate to the \u201cCentral Synchronization\u201d screen via the main menu, enter your credentials, and turn on Sophos Central Services.<\/p>\n<p>If you\u2019re a Sophos Managed Threat Response Advanced customer with XG Firewall and Sophos Central Reporting enabled, your firewall will automatically begin feeding ATP and IPS events to our MTR analysts to enhance threat hunting and investigations for your organization starting on March 5th.<\/p>\n<h2>Central management and reporting FAQ for XG Firewall<\/h2>\n<p><strong>What XG Firewall firmware version do I need to take advantage of these new features?<\/strong><\/p>\n<p>The new Sophos Central Group Management tools and Central Reporting require XG Firewall v18.\u00a0 Non-group firewall management is still supported for XG Firewall v17.5.<\/p>\n<p><strong>What\u2019s next for Sophos Central? <\/strong><\/p>\n<p>As Sophos Central is a hosted cloud solution, we will be continuously rolling out additional new features and capabilities in the weeks and months ahead that won\u2019t require any additional firmware updates to your Firewall.\u00a0 You can expect new features for:<\/p>\n<ul>\n<li>Nested group management<\/li>\n<li>Scheduled firmware updates<\/li>\n<li>Zero-touch deployment without a flash drive<\/li>\n<li>New firewall reports, report scheduling, multi-device reporting and much more<\/li>\n<\/ul>\n<p><strong>Will there be \u201cfor pay\u201d licenses in the future?<\/strong><\/p>\n<p>Central Firewall Management will remain free for all Sophos XG Firewall customers and partners.<\/p>\n<p>In the coming months we plan to introduce Central Firewall Reporting (CFR) Premium as an optional paid service that unlocks more capabilities and built-in report templates along with historical reporting up to one year. CFR Premium is designed for organizations with more connected devices that generate larger amounts of syslog data and want the flexibility to add storage capacity for extended historical reporting.<\/p>\n<p>We will announce the new licensing and pricing for the premium service closer to launch but in the meantime, try out the free version to see the types of custom reports you can create and the insights you\u2019ll get into network activity. For more information, see the <a href=\"http:\/\/www.sophos.com\/en-us\/products\/next-gen-firewall\/central-reporting.aspx\">CFR web page<\/a> on our website.<\/p>\n<p><strong>How does log retention and management work in Sophos Central?<\/strong><\/p>\n<p>The syslog data from XG Firewall is stored in your Sophos Central account in the cloud. Data is added and removed on a FIFO (First In, First Out) basis. Therefore, once the storage capacity maximum is reached, newly-added log data will replace the oldest data.\u00a0 The free version typically stores approximately seven days of log data (depending heavily on your log volume).\u00a0 The Premium version will allow for more storage and longer historical reporting periods \u2013 you can purchase as much as you need.<\/p>\n<p><strong>Is Central reporting in real time?<\/strong><\/p>\n<p>There is a slight delay between the time log data is generated on-box and that data being integrated into Sophos Central Reporting.\u00a0 It can potentially take up to a few minutes for the latest data to be reflected in reports.<\/p>\n<p><strong>What about Sophos Firewall Manager (SFM), Cloud Firewall Manager (CFM), and iView?<\/strong><\/p>\n<p>SFM, CFM and iView are based on aging legacy platforms that are expensive to maintain, and while both SFM and CFM will receive an update to provide essential support for v18, we expect this to be the last version of XG Firewall to be supported on these legacy platforms as we shift full investment into Sophos Central.<\/p>\n<p>Sophos Central is our strategy moving forward for firewall reporting and management. It unlocks many other important capabilities for customers such as our Managed Threat Response service, execution against our Synchronized Security vision, better security integrations for our customers, better management workflows, and more.<\/p>\n<p>Our partners and customers also love Sophos Central \u2013 for good reasons. It offers an unmatched cloud management experience and a very robust, scalable platform for growth along with a design focused on saving valuable time, building in essential expertise, and providing the ultimate cybersecurity ecosystem.\u00a0 As many partners and customers have already done, we expect everyone to migrate to Sophos Central over the coming months.<\/p>\n<p><strong>Does Sophos Central Reporting replace on-box reporting?<\/strong><\/p>\n<p>Full on-box reporting for XG Firewall continues to be fully supported and free. It is a unique differentiator among other firewalls on the market.<\/p>\n<p><strong>What about on-premise management and reporting solutions?<\/strong><\/p>\n<p>Sophos Central is a tightly integrated cloud hosted (SaaS) solution designed to take full advantage of cloud platform infrastructure and cannot be adapted for on-premise operation.<\/p>\n<p>For organizations that require on-premise solutions, XG Firewall supports the use of 3rd party tools such as Splunk, Logstash\/Kibana, and others to store and process log data. XG Firewall provides an XML-based API combined with SNMP monitoring\/alerting and email alerting, integration is possible with many other 3rd party network and firewall management consoles.<\/p>\n<p>&nbsp;<\/p>\n<\/p><\/div>\n<p><a href=\"http:\/\/feedproxy.google.com\/~r\/sophos\/dgdY\/~3\/RElydU5nWoY\/\" target=\"bwo\" >http:\/\/feeds.feedburner.com\/sophos\/dgdY<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p><img decoding=\"async\" src=\"https:\/\/news.sophos.com\/wp-content\/uploads\/2020\/02\/Picture-1-1.png\"\/><\/p>\n<p><strong>Credit to Author: Chris McCormack| Date: Tue, 25 Feb 2020 15:20:00 +0000<\/strong><\/p>\n<p>Sophos Central now includes group firewall management and flexible, cloud-based firewall reporting &#8211; for free.&lt;img src=&#8221;http:\/\/feeds.feedburner.com\/~r\/sophos\/dgdY\/~4\/RElydU5nWoY&#8221; height=&#8221;1&#8243; width=&#8221;1&#8243; alt=&#8221;&#8221;\/&gt;<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10378,10377],"tags":[24303,10379,24304,10384,14262,24305,10409,23124],"class_list":["post-17816","post","type-post","status-publish","format-standard","hentry","category-security","category-sophos","tag-central-firewall-reporting","tag-corporate","tag-group-policy-management","tag-network","tag-sophos-central","tag-sophos-managed-threat-response-advanced","tag-xg-firewall","tag-xg-firewall-v18"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/17816","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=17816"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/17816\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=17816"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=17816"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=17816"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}