Manuais+

Sophos XGS 116

Sophos XGS 116 Zero-Day Protection Manual

Modelo: XGS 116 | Marca: Sophos

1. Produto rematadoview

The Sophos XGS 116 Zero-Day Protection offers advanced security for your network. This subscription includes a fully cloud-based threat intelligence and threat analysis platform, powered by SophosLabs. It provides deep learning-based file analysis, detailed analysis reporting, and a threat meter to assess the risk of files. The system utilizes multiple layers of analytics to identify known and potential threats, reduce unknowns, and provide verdicts and intelligence reports for common file tipos.

Key components include Static File Analysis, which uses machine learning models, global reputation, and deep file scanning to identify threats without real-time execution. Dynamic File Analysis executes files in a secure cloud-based sandbox to observe behavior. Threat Intelligence Analysis Reporting delivers comprehensive insights into the nature and capabilities of threats through data science and SophosLabs research.

Sophos XGS 116 Zero-Day Protection device, front view
Figura 1.1: Fronte view of the Sophos XGS 116 device, showing ports and indicator lights.

2. Características clave

  • Zero-Day Protection License Includes: Xstream TLS Inspection, Xstream DPI engine, Zero-Day Threat Protection, Powered by SophosLabs Intelix.
  • Inspección de TLS de Xstream: Provides TLS 1.3 inspection with prepackaged exceptions for secure communication.
  • Xstream DPI engine: Features streaming deep-packet inspection for thorough traffic analysis.
  • Protección contra ameazas de día cero: Analyzes all unknown files using AI, Machine Learning (ML), and sandboxing techniques to detect novel threats.
  • Con tecnoloxía de SophosLabs Intelix: Utilizes cloud-based intelligence and analysis for comprehensive threat detection.

3. Configuración inicial

This section outlines the basic steps to set up your Sophos XGS 116 device. For detailed configuration, refer to the official Sophos documentation available on their support portal.

  1. Desempaquetar o dispositivo: Carefully remove the Sophos XGS 116 from its packaging. Ensure all components are present.
  2. Conectar enerxía: Connect the power adapter to the device and then to a power outlet. The device will begin to power on.
  3. Conectar cables de rede: Connect your internet service provider's modem or router to the designated WAN port on the XGS 116. Connect your internal network (LAN) devices or a network switch to the LAN ports.
  4. Acceso inicial: Accede ao dispositivo web-based management interface from a connected computer using the default IP address (refer to the quick start guide included with your device for specific details).
  5. Perform Basic Configuration: Follow the on-screen wizard to set up initial network parameters, administrator credentials, and activate your Zero-Day Protection license.
Sophos XGS 116 front panel with ports and indicators
Figure 3.1: Front panel of the Sophos XGS 116, highlighting connectivity ports and status indicators.

4. Principios de funcionamento

The Sophos XGS 116 Zero-Day Protection operates by integrating multiple security engines to provide comprehensive threat defense. Its core functionality revolves around the Xstream Architecture, which includes:

  • Inspección de TLS de Xstream: Decrypts and inspects TLS 1.3 traffic for hidden threats, ensuring secure communication channels are not exploited.
  • Motor de DPI Xstream: Performs deep packet inspection on all network traffic streams, identifying and blocking malicious content and applications.
  • Protección contra ameazas de día cero: Leverages SophosLabs Intelix, a cloud-based platform, to analyze unknown files. This involves:
    • Estática File Análise: Uses machine learning and global reputation to quickly identify threats without executing the file.
    • Dinámico File Análise: Executes suspicious files in a secure, isolated sandbox environment to observe their behavior and intent.
    • Threat Intelligence Analysis Reporting: Provides detailed reports on identified threats, offering insights beyond simple 'good' or 'bad' verdicts.

This multi-layered approach ensures that both known and emerging threats, including zero-day exploits, are detected and neutralized before they can impact your network.

5. Protection Modules

The Sophos XGS 116 offers a range of protection modules to customize security based on your specific needs. These modules are designed to provide comprehensive defense across various threat vectors.

Table detailing various Sophos Protection Modules and their functions
Figura 5.1: Máisview of available Protection Modules.

Key Modules Include:

  • Cortafuegos básico: Includes standard firewall features, routing, NAT, VPN, and reporting.
  • Protección de rede: Offers intrusion prevention, advanced threat protection, and secure wireless capabilities.
  • Web Protección: Proporciona web filtering, application control, and web application firewall functionalities.
  • Protección de día cero: Análises descoñecidas fileusando IA, ML e sandboxing.
  • Central Orchestration: SD-WAN orchestration, Central Firewall Advanced Reporting, and MTR/XDR ready.
  • Email Protection: Includes anti-spam, DLP, and email encryption.

6. Sophos Central Management

Sophos Central is a unified cloud management platform that allows you to manage your Sophos XGS 116 firewall and other Sophos security solutions from a single console. This simplifies deployment, monitoring, and reporting.

Sophos Central dashboard showing firewall management and reporting interfaces
Figure 6.1: Sophos Central interface for firewall management and reporting.

Key Capabilities:

  • Xestión simplificada: Manage multiple firewalls, configure policies, and apply them to groups of firewalls or individual devices.
  • Cloud Reporting: Access powerful reporting tools that provide visibility into network activity, security events, and user behavior.
  • Zero-Touch Deployment: Deploy new appliances remotely by storing configuration files on a USB key and booting the appliance.

Para máis información, visite sophos.com/firewall-central.

7. Synchronized Security

Sophos Synchronized Security is a unique solution that enables your XGS 116 firewall and endpoint security to communicate and share threat intelligence in real-time. This integration provides enhanced visibility and automated response to threats.

Diagram illustrating Sophos Synchronized Security with firewall and endpoint communication
Figure 7.1: How Sophos Synchronized Security works.

Aspectos clave:

  • Latido de seguridade: The firewall and endpoints continuously share health status, allowing for immediate identification of compromised systems.
  • Control de aplicacións sincronizado: Automatically identifies, classifies, and controls all unknown applications on the network.
  • Lateral Movement Protection: Isolates compromised systems to prevent threats from spreading across the network.
  • ID de usuario sincronizado: Provides transparent user identification for policy enforcement and reporting.
  • SD-WAN sincronizada: Optimizes application routing based on security and network performance.

8. Mantemento e mellores prácticas

To ensure optimal performance and security of your Sophos XGS 116, adhere to the following maintenance guidelines:

  • Actualizacións regulares do firmware: Keep your device's firmware up to date to benefit from the latest security patches, features, and performance improvements.
  • Monitorizar o estado do sistema: Regularly check the device's status indicators and logs through the Sophos Central management interface for any anomalies.
  • Configuracións de copia de seguranza: Periodically back up your device's configuration settings. This allows for quick restoration in case of an issue or during migration.
  • Review Políticas de seguridade: Regularmente review and update your security policies to adapt to evolving threat landscapes and changes in your network environment.
  • Medio físico: Ensure the device is placed in a well-ventilated area, free from dust and extreme temperatures, to prevent overheating.

9. Solución de problemas comúns

This section provides general guidance for troubleshooting common issues. For more specific problems, consult the Sophos knowledge base or contact technical support.

  • Sen enerxía: Ensure the power cable is securely connected to both the device and a working power outlet. Check the power indicator light on the device.
  • Sen conectividade de rede: Verify that Ethernet cables are properly connected to the correct ports (WAN/LAN) and that link lights are active. Check your modem/router status.
  • Non se pode acceder á interface de xestión: Confirm your computer is on the same network segment as the XGS 116 and that you are using the correct IP address. Try clearing your browser cache or using a different browser.
  • Rendemento lento da rede: Check the device's resource utilization (CPU, memory) via the management interface. Review logs for any high-traffic applications or potential security events.
  • License Issues: Ensure your Zero-Day Protection license is active and not expired. Verify the device is properly registered with Sophos Central.

10. Especificacións técnicas

EspecificaciónDetalle
Número de modeloXGS 116
MarcaSophos
ASINB095L1R75S
UPC739420468953
Tecnoloxía de conectividadeEthernet
Protocolo de seguridadeWPS
Método de controlAplicación
Usos recomendadosBusiness, Remote Work
Dispositivos compatiblesPortátil
Clase de banda de frecuenciaDobre banda
Característica especialWPS

11. Garantía e soporte técnico

Sophos products are covered by a standard manufacturer's warranty. For specific details regarding your warranty period and coverage, please refer to the documentation included with your purchase or visit the official Sophos websitio.

For technical assistance, product inquiries, or to report issues, please contact Sophos Technical Support. Support resources, including knowledge bases, forums, and contact information, are available on the official Sophos support portal:

When contacting support, please have your product model (XGS 116) and license information readily available to expedite the service process.

Documentos relacionados - XGS 116

Preview Firewall de Sophos: Protección e rendemento potentes
Explora a arquitectura Xstream de Sophos Firewall, deseñada para proporcionar unha robusta seguridade de rede, alto rendemento e protección avanzada contra ameazas para empresas de todos os tamaños. Descubre funcións como a inspección de TLS 1.3, a inspección profunda de paquetes, a aceleración de aplicacións e as capacidades de SD-WAN.
Preview Instrucións de funcionamento de Sophos XGS 116(con)/126(con)/136(con)
Instrucións de funcionamento completas para os dispositivos de seguridade de rede Sophos XGS 116(w), 126(w) e 136(w), que abarcan a instalación, a configuración, as especificacións técnicas e as precaucións de seguridade.
Preview Instrucións de funcionamento de Sophos XGS 116(con)/126(con)/136(con)
This document provides operating instructions for the Sophos XGS 116(w), 126(w), and 136(w) network appliances. It covers installation, configuration, hardware details, technical specifications, safety precautions, and connection information.
Preview Guía de inicio rápido de Sophos XGS 116(con)/126(con)/136(con)
Comeza rapidamente co teu dispositivo de cortafuegos Sophos XGS 116(w), 126(w) ou 136(w). Esta guía proporciona os pasos esenciais para a configuración, a conexión e a configuración inicial.
Preview Guía de inicio rápido de Sophos XGS 2100/2300/3100/3300
Esta guía proporciona información esencial para configurar e conectar o seu dispositivo de firewall Sophos XGS, incluíndo a desembalaxe, as conexións iniciais e a configuración básica.
Preview Dispositivos Sophos da serie XGS: Instrucións de funcionamento para XGS 118(w)/128(w)/138
Instrucións de funcionamento completas para os dispositivos de seguridade de rede da serie Sophos XGS, incluídos os modelos XGS 118(w), XGS 128(w) e XGS 138. Abarca a instalación, o cumprimento normativo, as consideracións ambientais, as especificacións técnicas, as interfaces e os procedementos operativos.