{"id":6729,"date":"2023-10-10T11:45:24","date_gmt":"2023-10-10T09:45:24","guid":{"rendered":"https:\/\/partnernews.sophos.com\/en-us\/?p=6729"},"modified":"2023-11-02T08:51:26","modified_gmt":"2023-11-02T08:51:26","slug":"sophos-firewall-v20-vpn-enhancements","status":"publish","type":"post","link":"https:\/\/partnernews.sophos.com\/es-es\/2023\/10\/products\/sophos-firewall-v20-vpn-enhancements\/","title":{"rendered":"Sophos Firewall v20 VPN Enhancements"},"content":{"rendered":"<p>With Sophos Firewall v20 now available for <a href=\"https:\/\/partnernews.sophos.com\/en-us\/2023\/09\/products\/sophos-firewall-v20-early-access-program-now-available\/\" target=\"_blank\" rel=\"noopener\">early access<\/a>, we will be covering some of the top new features every week leading up to launch.<\/p>\n<p>Last week\u2019s article covered the new <a href=\"https:\/\/partnernews.sophos.com\/en-us\/2023\/10\/products\/sophos-firewall-v20-streamlined-management\/\" target=\"_blank\" rel=\"noopener\">streamlined management features<\/a> in Sophos Firewall v20.<\/p>\n<p>This week, we\u2019ll have a look at the latest enhancements to VPN with Sophos Firewall v20.<\/p>\n<p>Check out this quick video overview of the new VPN enhancements.<\/p>\n<p><iframe loading=\"lazy\" class=\"vidyard_iframe\" title=\"Sophos Firewall v20: VPN Enhancements\" src=\"\/\/play.vidyard.com\/bgUdBHwMBFLt8KnwgcFr7u.html?\" width=\"640\" height=\"360\" frameborder=\"0\" scrolling=\"no\" allowfullscreen=\"allowfullscreen\"><\/iframe><\/p>\n<p><strong>Here\u2019s an overview of the VPN enhancements in Sophos Firewall v20:<\/strong><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone wp-image-6730 size-full\" src=\"https:\/\/partnernews.sophos.com\/en-us\/wp-content\/uploads\/sites\/3\/2023\/10\/image001.png\" alt=\"\" width=\"1431\" height=\"557\" \/><\/p>\n<p><strong>New Secure VPN Portal<\/strong> &#8211; Sophos Firewall v20 introduces a new hardened and highly secure, containerized self-service VPN portal for remote access users. It provides remote-access self-service options such as downloads for the Sophos Connect Client, VPN configurations, auto-provisioning, and clientless VPN bookmarks.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-6731\" src=\"https:\/\/partnernews.sophos.com\/en-us\/wp-content\/uploads\/sites\/3\/2023\/10\/image003.png\" alt=\"\" width=\"640\" height=\"407\" \/><\/p>\n<p>The new portal is accessed from the previous user portal port of 443 to maintain compatibility and can share a common port with the WAF or SSL VPN.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone wp-image-6732 size-full\" src=\"https:\/\/partnernews.sophos.com\/en-us\/wp-content\/uploads\/sites\/3\/2023\/10\/image005.png\" alt=\"\" width=\"1430\" height=\"459\" \/><\/p>\n<p>The legacy user portal is now accessed via port 4443 or 65009 and continues to offer other services such as other client downloads, email quarantine management, policy overrides, and hotspots. Please note that we strongly recommend that customers DO NOT expose the legacy user portal to the WAN and only use the new VPN portal from outside the firewall.<\/p>\n<p>Access Control for the new VPN Portal is provided alongside the existing User Portal:<\/p>\n<p><strong> <img loading=\"lazy\" decoding=\"async\" class=\"alignnone wp-image-6733 size-full\" src=\"https:\/\/partnernews.sophos.com\/en-us\/wp-content\/uploads\/sites\/3\/2023\/10\/image007.png\" alt=\"\" width=\"1428\" height=\"439\" \/><\/strong><strong>IPsec Connection Stateful HA Failover<\/strong> &#8211; Adds seamless transitioning for RBVPN, PBVPN, and remote access VPN without losing a session in the event of a high-availability failover. It also adds new command-line interface (CLI) options to manage settings.<\/p>\n<p><strong>FQDN Host Support for SSLVPN<\/strong> &#8211; Adds fully qualified domain name (FQDN) host and group support for SSLVPN remote access and site-to-site VPN.<\/p>\n<p><strong>IPsec VPN Tunnel Status Monitoring via SNMP<\/strong> &#8211; Adds support for monitoring IPsec VPN tunnel status via SNMP.<\/p>\n<p><strong>Multiple 0.0.0.0 (=*\/ ANY) Remote Gateway Support for RBVPN<\/strong> \u2013 Eliminates the need for explicit DDNS in distributed multi-location deployments.<\/p>\n<p><strong>Unique PSK Support<\/strong> \u2013 Now supports unique PSK for VPN connections with the same local and remote gateway connections using IKEv2 policy with unique local and remote IDs.<\/p>\n<p><strong>DH Group 27-30 \/ RFC6954<\/strong> \u2013 Support for IPsec VPN.<\/p>\n<p>&nbsp;<\/p>\n<h2>Early Access Program<\/h2>\n<p>Please note that the early access program has ended \u2013 we expect to announce general availability very soon! A special thanks to all who have participated in the program.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Start taking advantage of all the great new features in SFOS v20 today.<\/p>\n","protected":false},"author":19,"featured_media":3000006677,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"advanced_seo_description":"","jetpack_seo_html_title":"","jetpack_seo_noindex":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[72],"tags":[9,229,114],"coauthors":[44],"class_list":["post-6729","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-products","tag-early-access-program","tag-sfos-v20","tag-sophos-firewall"],"jetpack_featured_media_url":"https:\/\/partnernews.sophos.com\/en-us\/wp-content\/uploads\/sites\/3\/2023\/09\/featured-image-sophos-firewall-v20.png","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/partnernews.sophos.com\/es-es\/wp-json\/wp\/v2\/posts\/6729","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/partnernews.sophos.com\/es-es\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/partnernews.sophos.com\/es-es\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/partnernews.sophos.com\/es-es\/wp-json\/wp\/v2\/users\/19"}],"replies":[{"embeddable":true,"href":"https:\/\/partnernews.sophos.com\/es-es\/wp-json\/wp\/v2\/comments?post=6729"}],"version-history":[{"count":2,"href":"https:\/\/partnernews.sophos.com\/es-es\/wp-json\/wp\/v2\/posts\/6729\/revisions"}],"predecessor-version":[{"id":6888,"href":"https:\/\/partnernews.sophos.com\/es-es\/wp-json\/wp\/v2\/posts\/6729\/revisions\/6888"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/partnernews.sophos.com\/es-es\/wp-json\/"}],"wp:attachment":[{"href":"https:\/\/partnernews.sophos.com\/es-es\/wp-json\/wp\/v2\/media?parent=6729"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/partnernews.sophos.com\/es-es\/wp-json\/wp\/v2\/categories?post=6729"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/partnernews.sophos.com\/es-es\/wp-json\/wp\/v2\/tags?post=6729"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/partnernews.sophos.com\/es-es\/wp-json\/wp\/v2\/coauthors?post=6729"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}