{"id":9652,"date":"2025-11-06T07:28:50","date_gmt":"2025-11-06T07:28:50","guid":{"rendered":"https:\/\/partnernews.sophos.com\/it-it\/?p=9652"},"modified":"2025-11-10T13:38:48","modified_gmt":"2025-11-10T13:38:48","slug":"sophos-firewall-v22-security-enhancements","status":"publish","type":"post","link":"https:\/\/partnernews.sophos.com\/it-it\/2025\/11\/products\/sophos-firewall-v22-security-enhancements\/","title":{"rendered":"Sophos Firewall v22: Security Enhancements"},"content":{"rendered":"

In the last few articles on the topic of our latest Sophos Firewall release, we\u2019ve discussed the importance of Secure by Design<\/a> and covered one of the highlight features of this release: the new Health Check Feature<\/a>. There are also a number of other important enhancements to secure by design in Sophos Firewall v22 I\u2019d like to draw attention to.<\/p>\n

Next-Gen Xstream Architecture<\/strong><\/p>\n

Sophos Firewall introduced the Xstream Architecture as a key component of v18, enabling the XGS Series appliances to take full advantage of the added processing power and capabilities it provided. Since then, Sophos Firewall\u2019s Xstream Architecture has been constantly scaling and adapting to bring additional performance to customer networks.\u00a0 This is all thanks to the programmable nature of Sophos Firewall\u2019s Xstream Architecture that is NOT dependent on custom silicon ASICs \u2013 and in fact works equally well on general-purpose CPUs, virtual CPUs, and our XGS Series models that have dedicated flow processors.<\/p>\n

Sophos Firewall v22 introduces our next-generation Xstream Architecture which has an all-new control plane re-architected for maximum security and scalability to take us into the future.\u00a0 The new control plane enables modularization, isolation, and containerization of services like IPS for example, to run like \u201capps\u201d on the firewall platform.\u00a0 It also enables complete separation of privileges for added security.<\/p>\n

The net result is an ultra-secure, scalable, and streamlined architecture built for the future.\u00a0 This next-gen Xstream Architecture lays a foundation for highly secure, scalable, and modular containerized services, n-node clustering, and full RESTful APIs for high-performance remote management and automation.<\/p>\n

High Availability Self-Healing<\/strong><\/p>\n

In addition, this Next-Gen Xstream Architecture adds a new self-healing capability to high-availability deployments that is continuously monitoring system state and fixes deviations between devices automatically.<\/p>\n

Hardened Kernel<\/strong><\/p>\n

The next-gen Xstream Architecture in Sophos Firewall OS is built upon a new hardened kernel (v6.6+) that provides enhanced security, performance, and scalability to maximize current and future hardware.\u00a0 The. new kernel offers tighter process isolation and better mitigation for side-channel attacks as well as mitigations for CPU vulnerabilities (Spectre, Meltdown, L1TF, MDS, Retbleed, ZenBleed, Downfall).\u00a0 It also offers hardened usercopy, stack canaries, and Kernel Address Space Layout Randomization (KASLR).<\/p>\n

Remote Integrity Monitoring<\/strong><\/p>\n

Sophos Firewall OS v22 now integrates our Sophos XDR Linux Sensor that enables real-time monitoring of system integrity, including unauthorized configuration, rule exports, malicious program execution attempts, file tampering, and more. This helps our security teams who are constantly monitoring our entire Sophos Firewall customer base to better identify, investigate, and respond more quickly to any attack.\u00a0 This is an added security capability that no other firewall vendor provides.<\/p>\n

New Anti-Malware Engine<\/strong><\/p>\n

Sophos Firewall OS v22 integrates the latest Sophos anti-malware engine with enhanced zero-day real-time detection of emerging threats using global reputation lookups with a massive cloud database of known malicious files, updated every 5 mins or less. It also introduces AI and ML model detections and delivers enhanced telemetry to SophosLabs for accelerating their emerging threat detection analysis.<\/p>\n

Get Started Today<\/strong><\/p>\n

Be sure to get involved in the\u00a0Sophos Firewall v22 Early Access Program<\/a>\u00a0to better secure your and your customer\u2019s network and help make this release the best it can be. Also be sure to review the What\u2019s New Guide<\/a> for a full list of all the new capabilities in Sophos Firewall v22.<\/p>\n

To learn more about these powerful new offerings and how they can help you deliver unmatched value to your customers, join us for one of our exclusive partner launch webinars <\/a>on the Sophos Academy.<\/strong><\/p>\n

Launch Webinars:
\nAnnouncing Sophos Firewall v22
\n<\/strong>\ud83d\udcc5 APJ: Dec 9, 2025\u00a0 | Register now<\/a>
\n\ud83d\udcc5 EMEA: Dec 10, 2025\u00a0 | Register now<\/a>
\n\ud83d\udcc5 AMER: Dec 10, 2025\u00a0 |\u00a0Register now<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

In the last few articles on the topic of our latest Sophos Firewall release, we\u2019ve discussed the importance of Secure by Design and covered one of the highlight features of this release: the new Health Check Feature. There are also […]<\/p>\n","protected":false},"author":19,"featured_media":3000009865,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"advanced_seo_description":"","jetpack_seo_html_title":"","jetpack_seo_noindex":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[70],"tags":[275,110],"coauthors":[44],"class_list":["post-9652","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-products","tag-sfos-v22","tag-sophos-firewall"],"jetpack_featured_media_url":"https:\/\/partnernews.sophos.com\/en-us\/wp-content\/uploads\/sites\/3\/2025\/10\/featured-image-sophos-firewall-v22-partner-blog-icon-1600x960px.png","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/partnernews.sophos.com\/it-it\/wp-json\/wp\/v2\/posts\/9652","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/partnernews.sophos.com\/it-it\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/partnernews.sophos.com\/it-it\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/partnernews.sophos.com\/it-it\/wp-json\/wp\/v2\/users\/19"}],"replies":[{"embeddable":true,"href":"https:\/\/partnernews.sophos.com\/it-it\/wp-json\/wp\/v2\/comments?post=9652"}],"version-history":[{"count":2,"href":"https:\/\/partnernews.sophos.com\/it-it\/wp-json\/wp\/v2\/posts\/9652\/revisions"}],"predecessor-version":[{"id":9663,"href":"https:\/\/partnernews.sophos.com\/it-it\/wp-json\/wp\/v2\/posts\/9652\/revisions\/9663"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/partnernews.sophos.com\/it-it\/wp-json\/"}],"wp:attachment":[{"href":"https:\/\/partnernews.sophos.com\/it-it\/wp-json\/wp\/v2\/media?parent=9652"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/partnernews.sophos.com\/it-it\/wp-json\/wp\/v2\/categories?post=9652"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/partnernews.sophos.com\/it-it\/wp-json\/wp\/v2\/tags?post=9652"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/partnernews.sophos.com\/it-it\/wp-json\/wp\/v2\/coauthors?post=9652"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}