WatchGuard–Nouveau firmware 11.9.4

Ca y est le nouveau firmware 11.9.4 de WatchGuard est sorti. Parmi les nouveautés, un élément est interessant pour ceux qui veulent se servir du XTMv ( version vmware ou hyperv) avec des dédibox de chez Online ou de OVH. Le support des adresses IP en /32 pour les interfaces externe fonctionne. Donc à nous les IP Failover sur Watchguard.

Autre bonne nouvelle le portail captif avec la génération de ticket. Ce qui permet pour un hotel ou un restaurant de facilement donner l’accès à ses clients.

La news officielle est ci-dessous:

Fireware XTM 11.9.4 and WSM 11.9.4 
Fireware OS 11.9.4 and WSM 11.9.4 are now available. This maintenance release includes many bug fixes and several new enhancements. The Release Notes list all resolved issues and new enhancements in the software.
Key Highlights:

  • New Guest Services capability enables the creation of temporary accounts for hotspot access. Ideal for hotels and retail stores to provide internet access for their visitors and customers. A new guest administrator role and user interface enable front line staff to manage and create the accounts.
  • Selective inspection or bypass of encrypted web traffic (HTTPS DPI) via domain name or web category. Administrators now have more flexibility, allowing them to bypass DPI inspection of known good sites that need to remain private, such as online banking or financial applications.
  • Diagnostic report output of Branch Office VPN configurations helps with quick troubleshooting and fixing of any tunnel issues.
  • SSLv3 is disabled by default to protect against man in the middle attacks that could exploit the Poodle vulnerability (CVE-2014-3566).
  • Many bug fixes to improve the scalability and reliability of Single Sign-On.
  • Support for /31 and /32 subnets on external interfaces, which are commonly used in regions with shortages of IPv4 IP addresses.
  • WSM support for the new Firebox M400 and M500 models.

Full details of all changes including screenshots of new user interface are provided in the What’s New in 11.9.4 presentation.

Does This Release Pertain to Me?

This release applies to all Firebox and XTM appliances, except XTM 21/21-W, 22/22-W, or 23/23-W appliances.

New Software Download Center!

Firebox and XTM appliance owners can obtain this update without additional charge by downloading the applicable packages from the new and improved WatchGuard Software Download Center. No login is required to download the software, but you must have active LiveSecurity on the appliance to apply the upgrade. Please read the Release Notes before you upgrade, to understand what’s involved. Known issues are now listed in the Knowledge Base when accessed through the WatchGuard Portal. You must log in to see Known Issues.

WatchGuard Firebox T10-W – FAQ

Le nouveau boitier WatchGuard T10-W est en vente.

Il complète la gamme par un ajout du Wifi sur ce petit modèle adapté aux TPEs ou aux travailleurs à la maison. Enfin votre iPad ou Galaxy Tab va pouvoir être sur le même réseau que vos postes et avec la même sécurité.


Conseillé pour des sites de 1 à 5 personnes.

Frequently Asked Questions: WatchGuard Firebox T10-W

Q: What is the WatchGuard Firebox T10-W?

A: Earlier this year, WatchGuard introduced the Firebox T10, a powerful small device designed to leverage the “re-perimeterization” of the corporate network that lets you “protect where you connect” – bringing full Unified Threat Management (UTM) capabilities to home offices, shared suites, co-officing facilities, kiosks, and other working arrangements. Now, we are extending the Firebox T10 product family with the Firebox T10-W, which adds built-in secure wireless capabilities to the compact size, power and flexibility of the Firebox T10.

Q: What security functionality is offered on the Firebox T10-W?

A: The WatchGuard Firebox T10-W offers the full Security Suite, individual security subscriptions such as APT Blocker and Data Loss Prevention, and LiveSecurity options offered on other WatchGuard integrated network security devices.

Q: What wireless functionality is offered on the Firebox T10-W?

A: The WatchGuard Firebox T10-W includes a single radio selectable between the 2.4GHz and 5GHz bands, with 2×2 MIMO internal antennas. It supports 802.11n/a/b/g.

Q: Can I also use WatchGuard Access Points with Firebox T10-W?

A: As with other devices with onboard secure wireless, the Firebox T10-W incorporates the Gateway Wireless Controller functionality, allowing it to manage external WatchGuard Access points as well.

Q: How does the Firebox T10-W compare to the XTM 25-W?

A: The Firebox T10-W is targeted at SOHO work environments and smaller distributed-enterprise locations (up to 5 users recommended).

· The Firebox T10 incorporates three 10/100/1000 Mb Ethernet ports, supporting simpler network configurations; for more complex connectivity, the 2 Series with its five ports is indicated.

· Throughput is somewhat lower than the XTM 25-W (55 Mbps UTM compared to 80 Mbps UTM for XTM 25-W, with similarly lower numbers for firewall and VPN throughput).

Q: Are the advanced networking and high availability (formerly Fireware Pro) features available for the Firebox T10-W?

A: Because of the reduced network connectivity profile, the Firebox T10 does not support the following features:

· FireCluster High Availability

· Policy-Based Routing

· WAN Failover

· Multi-WAN Load Balancing

· Dynamic Routing

These capabilities are included with wired and wireless XTM 2 Series devices at no charge.

Q: In which countries is the Firebox T10-W available?

A: The Firebox T10-W is available and certified for use in the United States, Canada, the UK, EU countries, Australia and New Zealand.

Q: Are there country-specific models?

A: The Firebox T10-W includes a single power adapter with interchangeable plugs of the US, UK, EU, and AU formats.

Q. Is Firebox T10-W compatible with XTM devices?

A. XTM models and the Firebox T10 family run the same Fireware OS, and are managed using the same tools including WatchGuard System Manager, the management servers, and WatchGuard Dimension.

Q: What support offerings are available?

A: The LiveSecurity 24×7 support option is available for the Firebox T10-W.
Note that for customers owning more than 50 Firebox T10 family, XTM 2 or XTM 33 systems, the existing Enterprise Gold offering will provide more flexibility, improved response time commitments, and removal of incident limits.