Sophos Firewall Manager

User assistance

Introduction
Using Admin Console
Device Configuration
Templates
System & Monitor
Appendix A - Guides
Copyright notice

Download PDF |

Contact Sophos Support

Introduction
Using Admin Console
Device Configuration
- Device Dashboard
- Policy Configuration Tasks
- Monitor and Analyze
- Protect
  - Firewall
    Firewall rules are security rule-sets to implement control over users, applications or network objects in an organization. Using Firewall rules, you can create blanket or specialized traffic transit rules based on the requirement. Firewall rules provide centralized management for the entire set of device security Firewall rules. Sophos Firewall Manager implements single pane of management to secure all enterprise applications using configuration templates for various types of Firewall rules.
  - Intrusion prevention
    With intrusion prevention, you can examine network traffic for anomalies to prevent DoS and other spoofing attacks. Using policies, you can define rules that specify an action to take when traffic matches signature criteria. You can specify protection on a zone-specific basis and limit traffic to trusted MAC addresses or IP–MAC pairs. You can also create rules to bypass DoS inspection.
  - Web
    Web protection keeps your company safe from attacks that result from web browsing and helps you increase productivity. You can define browsing restrictions with categories, URL groups, and file types. By adding these restrictions to policies, you can block websites or display a warning message to users. For example, you can block access to social networking sites and executable files. General settings let you specify scanning engines and other types of protection. Exceptions let you override protection as required for your business needs.
  - Applications
    Application protection helps keeps your company safe from attacks and malware that result from application traffic exploits. You can also apply bandwidth restrictions and restrict traffic from applications that lower productivity. Application filters allow you to control traffic by category or on an individual basis. With synchronized application control, you can restrict traffic on endpoints that are managed with Sophos Central. Managing cloud application traffic is also supported.
  - Wireless
    Wireless protection lets you define wireless networks and control access to them. The firewall supports the latest security and encryption, including rogue access point scanning and WPA2. Wireless protection allows you to configure and manage access points, wireless networks, and clients. You can also add and manage mesh networks and hotspots.
  - Email
  - Web server
    You can protect web servers against Layer 7 (application) vulnerability exploits. These attacks include cookie, URL, and form manipulation. Use these settings to define web servers, protection policies, and authentication policies for use in Web Application Firewall (WAF) rules. General settings allow you to protect web servers against slow HTTP attacks.
  - Advanced Threat
    - Advanced threat protection
      Advanced threat protection analyzes incoming and outgoing network traffic (for example, DNS requests, HTTP requests, and IP packets) for threats. Using ATP, you can quickly detect compromised clients in your network and raise an alert or drop the traffic from those clients.
    - Security Heartbeat
    - Sandstorm settings
      Use these settings to specify a data center and to exclude files from Sandstorm analysis.
- Configure
- System
Templates
System & Monitor
Appendix A - Guides
To complement the Online help, following documents are also available:
Copyright notice

Home
Device Configuration
Protect
Advanced Threat

Advanced Threat