Sophos UTM 9.6 Up2Date - overview and configuration

The Administration > Up2Date menu allows you to configure the Sophos UTM update service. Regular updates ensure that the UTM always has the latest bug fixes, product enhancements and up-to-date virus signatures. Each update is digitally signed by Sophos - unsigned or fake updates can thus be detected and installations of fake updates prevented. New update packages are automatically downloaded to the UTM by default. This option can be adjusted under Management > Up2Date > Configuration.

There are two types of software updates:

• Firmware updates: Firmware updates contain bug fixes and product enhancements for Sophos UTM software.
• Pattern updates: Pattern updates keep virus, spam and intrusion prevention signatures and online help up to date.

In order to download Up2Date packages, the UTM opens a TCP-connection to the update servers on port 443. No adjustments need to be made by the administrator for this. However, if you use a superordinate firewall, you must explicitly allow communication to the update servers via TCP port 443.

The tab Administration > Up2Date > Overview gives you a quick overview of whether your system is up to date. From here you can install new firmware and pattern updates.

Up2Date progress

This area is only visible if you have initiated an installation process. Click the Show Up2Date progress in new window button to track the update progress. If your browser does not suppress pop-up windows, a new window will open showing the update progress. Otherwise, you must first explicitly allow pop-up windows.

Note: Before an installation process is started, a backup is sent to the default recipient(s) for backups.

Firmware

In the Firmware section, you can see the currently installed firmware version. If an update package is available, an Update Now to Latest Version button is displayed. In addition, a message is displayed in the Available Firmware Up2Dates section. From here, you can directly download and install the latest update that is displayed here. Once you have clicked Update now to latest version, you can follow the update progress in a new window. To do this, click on the Update icon of WebAdmin.

Available Firmware Up2Dates

If you have selected Manual on the Configuration tab, you will see a Check for Up2Date packages now button here, which allows you to download firmware Up2Date packages manually. If more than one Up2Date package is available, you can choose which one to install. You can use the Update Now to Latest Version button in the Firmware section to install the latest version.

There is also a Schedule button for each Up2Date that allows you to set an exact date and time for an automatic installation. To delete a scheduled installation, click Cancel.

A note on "mandatory" installations: There may be constellations in which you schedule the installation of an Up2Date package that requires the prior installation of an older Up2Date package. This Up2Date package is automatically scheduled for installation before the actual Up2Date package. However, you can also schedule an exact time for this package, but you cannot prevent its installation.

Patterns

The Patterns section shows the version number of the currently installed patterns. If you have selected Manual on the Configuration tab, you will see an Update Patterns Now button here. Use this button to download and install new available patterns.

Note - The currently installed pattern version does not have to match the latest available pattern version for UTM to work correctly. A mismatch between the currently installed pattern version and the currently available pattern version may occur if new patterns are available but do not match the device you are using. For example, if you are not using the intrusion prevention feature of , newly available IPS patterns will not be installed. This increases the difference between the currently installed pattern version and the last pattern version.

Configuration

New update packages are automatically downloaded to the UTM by default.

Firmware download interval

This option defaults to 15 minutes, which means that Sophos UTM checks for available firmware updates every 15 minutes. Sophos U TM automatically downloads available firmware update packages without installing them. The exact time for this will vary within the specified time period. You can increase the interval up to Monthly or disable automatic firmware downloads altogether by selecting Manual from the drop-down list. If you select Manual, a Check Now for Up2Date Packages button is displayed on the Overview tab.

Interval for Pattern Download and Installation

This option defaults to 15 minutes, which means that Sophos UTM checks for available pattern updates every 15 minutes. Sophos U TM automatically downloads and installs available pattern update packages. The exact time for this will vary within the specified time period. You can increase the interval up to Monthly or disable automatic pattern downloads and installations altogether by selecting Manual from the drop-down list. If you select Manual, an Update Patterns Now button is displayed on the Overview tab.

Advanced

On the Management > Up2Date > Advanced tab, there are further configuration options for the update functionality of your UTM, such as specifying a parent proxy or an Up2Date cache.

Note: Update packages can be downloaded from the Sophos UTM Downloads download.

Manual upload of Up2Date packages: If your UTM does not have direct access to the Internet or an Up2Date cache to download update packages, you can also upload them manually. To do this, proceed as follows:

1. Open the Upload File dialogue box. Click on the folder symbol next to the Up2Date file field. The Upload File dialogue window opens.
2. Select the update package. In the Upload File dialogue box, click the Browse button and select the update package you want to upload.
3. Click Start Upload. The update package is uploaded to the UTM.
4. Click on Apply. Your settings are saved.

Parent Proxy

A parent proxy (also called parent or upstream proxy) is required in countries where access to the Internet is only allowed through a government-controlled proxy. If your security regulations require the use of a parent proxy, you can configure it here by specifying a host definition and port.

Use parent proxy:

1. Select this option to use a parent proxy.
   Select the host or add a new host.
2. Specify the port of the proxy. Adding a definition is explained on the Definitions & Users > Network Definitions > Network Defin itions page.
3. Click Apply. Your settings are saved.

Proxy requires authentication: If the parent proxy requires authentication, enter the user name and password here.

Note: The parent proxy is disabled if the Use SUM server as Up2Date cache option is enabled in the Central Management > Sophos UTM Manager tab.

If you have set up a parent proxy, Sophos UTM will fetch the update packages from this proxy.