Sophos XGS 136 Next-Gen Firewall with Xstream Protection User Manual

1. Introduction

The Sophos XGS 136 Next-Gen Firewall with Xstream Protection is a robust network security appliance designed to safeguard your organization's network infrastructure. It features a dual-processor architecture, including a dedicated Xstream Flow Processor, to deliver high-performance threat protection and accelerated application delivery. This manual provides essential information for the proper setup, operation, and maintenance of your Sophos XGS 136 device.

Sophos XGS 136 Next-Gen Firewall front view

Image 1.1: Front view of the Sophos XGS 136 Next-Gen Firewall appliance. This image displays the device's front panel with LED indicators, a COM port, and a USB port.

2. Setup

2.1. Unboxing and Package Contents

Upon receiving your Sophos XGS 136, carefully unbox the device and verify that all components are present. The standard package typically includes:

Sophos XGS 136 appliance
Power cord (US Power Cord for this model)
Ethernet cable
Quick Start Guide or documentation

Image 2.1: Sophos XGS Firewall product packaging. This image shows the retail box for the XGS Firewall series.

2.2. Physical Installation

Proper physical installation is crucial for optimal performance and longevity of the device.

Placement: Position the appliance in a well-ventilated area, away from direct sunlight, heat sources, and excessive dust. Ensure adequate airflow around the device.
Power Connection: Connect the provided power cord to the appliance's power input and then to a grounded electrical outlet.
Network Connections:
- Connect your internet service provider's modem or router to the designated WAN port (e.g., Port 2 or a configurable port) on the XGS 136 using an Ethernet cable.
- Connect your internal network devices (switches, computers) to the LAN ports (e.g., Ports 1, 3-8, 9-12) on the XGS 136.
- If using SFP ports, insert compatible SFP transceivers and connect fiber optic cables as required.
Console Connection (Optional): For initial setup or troubleshooting, connect a console cable from your computer's serial port (or USB-to-serial adapter) to the COM port on the XGS 136.

Sophos XGS 136 Next-Gen Firewall rear view

Image 2.2: Rear view of the Sophos XGS 136 Next-Gen Firewall. This image shows the various ports including DC IN, COM, USB, Ethernet ports (1-8, 9-12), and SFP ports (F1, F2).

2.3. Initial Configuration

After physical installation, power on the device. The Sophos XGS 136 will boot up. Initial configuration typically involves accessing the device's web-based management interface or using the command-line interface (CLI) via the console port. Refer to the Sophos documentation for detailed steps on initial network configuration, setting up administrative credentials, and registering the device.

3. Operating the Sophos XGS 136

3.1. Powering On and Off

Power On: Connect the power cord to the appliance and a power outlet. The device will automatically power on.
Power Off: To safely power off the device, it is recommended to shut it down through the administrative interface first, then disconnect the power cord.

3.2. Understanding LED Indicators

The front panel LEDs provide visual status of the appliance and network activity:

Status: Indicates the overall operational status of the device.
O/L (Overload): May indicate high system load or issues.
C1, C2: Status indicators for specific components or services.
F1, F2: Status indicators for SFP ports.
ACT/LNK (Activity/Link): Indicates network link status and data activity for each Ethernet port.
Speed: Indicates the connection speed (e.g., 10/100/1000 Mbps) for each Ethernet port.

3.3. Xstream Protection Features

The Sophos XGS 136 leverages Xstream Protection to provide comprehensive security. Key features include:

Networking and SD-WAN: Advanced routing, traffic shaping, and Software-Defined Wide Area Network capabilities.
Protection and Performance: Xstream Architecture with Network Flow FastPath, TLS 1.3 Inspection, and Deep-Packet Inspection for optimized security and speed.
VPN: Support for IPsec/SSL Site-to-Site and Remote Access VPNs.
Reporting: Historical on-box logging and reporting, with Sophos Central cloud reporting for extended data retention.
Network Protection: Advanced threat prevention including Intrusion Prevention System (IPS), Advanced Threat Protection (ATP), and Synchronized Security Heartbeat.
Web Protection: Comprehensive web filtering, web threat protection, and application control.
Zero-Day Protection: Utilizes Sophos AI, machine learning, and cloud sandboxing to detect and block unknown threats.
Sophos Central Management: Centralized management for multiple firewalls, backup, firmware updates, and zero-touch deployment.
Sophos Central Orchestration: SD-WAN orchestration for simplified network management.

Sophos Xstream Protection features overview

Image 3.1: Overview of Sophos Xstream Protection features. This diagram illustrates the various security modules including Base Firewall, Network Protection, Web Protection, Zero-Day Protection, Sophos Central Management, and Sophos Central Orchestration.

4. Maintenance

Regular maintenance ensures the continued optimal performance and security of your Sophos XGS 136 firewall.

Firmware Updates: Regularly check for and apply the latest firmware updates provided by Sophos to ensure you have the most current security patches and features.
Configuration Backups: Periodically back up your device configuration. This allows for quick restoration in case of unforeseen issues or hardware replacement.
System Monitoring: Monitor system logs and performance metrics through the management interface to identify potential issues early.
Physical Cleaning: Ensure the appliance's vents are clear of dust and debris to maintain proper airflow and prevent overheating. Use a soft, dry cloth for cleaning the exterior.

5. Troubleshooting

If you encounter issues with your Sophos XGS 136, consider the following basic troubleshooting steps:

No Power: Verify the power cord is securely connected to both the appliance and a working power outlet. Check the power LED on the front panel.
No Network Connectivity:
- Check Ethernet cable connections to ensure they are firmly seated in the correct ports.
- Observe the ACT/LNK and Speed LEDs for the connected ports. A solid link light and blinking activity light indicate a healthy connection.
- Verify network configuration settings within the Sophos Firewall OS.
Performance Issues:
- Check system resource utilization (CPU, memory) via the management interface.
- Review security policies and logs for any rules or events that might be impacting performance.
- Ensure the device is running the latest firmware.
Accessing Management Interface: If you cannot access the web interface, try connecting via the console port for CLI access to diagnose network settings.

For more advanced troubleshooting or persistent issues, refer to the official Sophos support documentation or contact Sophos technical support.

6. Specifications

The following table outlines the technical specifications for the Sophos XGS 136 Next-Gen Firewall.

Sophos XGS 136 technical specifications table

Image 6.1: Detailed technical specifications for Sophos XGS 126, XGS 126w, XGS 136, and XGS 136w models. This table provides performance metrics, physical interfaces, power, and environmental details.

Sophos XGS 136 Key Specifications
Category	Specification
Dimensions (W x D x H)	320 x 213 x 44 mm
Weight	2.4 kg / 5.29 lbs (unpacked)
Power Supply	External auto-ranging AC-DC 100-240VAC, 2.5A, 50-60 Hz, 12VDC, 12.5A, 150W
Power Consumption (Idle/Max)	26W / 36W (12V BTU/hr idle), 126W / 150W (12V BTU/hr max)
PoE Addition Enabled	76 W / 260 BTU/hr (max)
Operating Temperature	0°C to 40°C (Operating), -20°C to 70°C (Storage)
Humidity	10% to 90% non-condensing
Ethernet Ports	12 x GbE copper, 2 x SFP fiber*
Management Ports	1 x Micro-USB (console), 1 x USB 2.0
Firewall Throughput	11,500 Mbps
IPS Throughput	2,500 Mbps
Threat Protection Throughput	900 Mbps
Xstream SSL/TLS Inspection	800 Mbps

*SFP transceivers sold separately.

7. Warranty and Support

Sophos provides comprehensive support and warranty services for its products. For detailed information regarding your product's warranty, support options, and service level agreements, please refer to the official Sophos website or the documentation included with your purchase.

You can find additional resources and contact information for technical support on the official Sophos support portal:

Visit Sophos Support

	Sophos Firewall: Powerful Protection and Performance Explore the Sophos Firewall Xstream architecture, designed to provide robust network security, high performance, and advanced threat protection for businesses of all sizes. Discover features like TLS 1.3 Inspection, Deep Packet Inspection, Application Acceleration, and SD-WAN capabilities.
	Sophos XGS 116(w)/126(w)/136(w) Operating Instructions Comprehensive operating instructions for Sophos XGS 116(w), 126(w), and 136(w) network security appliances, covering installation, configuration, technical specifications, and safety precautions.
	Sophos XGS 116(w)/126(w)/136(w) Quick Start Guide Get started quickly with your Sophos XGS 116(w), 126(w), or 136(w) firewall appliance. This guide provides essential steps for setup, connection, and initial configuration.
	Sophos XGS 2100/2300/3100/3300 Quick Start Guide This guide provides essential information for setting up and connecting your Sophos XGS firewall appliance, including unboxing, initial connections, and basic configuration.
	Sophos XGS Series Appliances: Operating Instructions for XGS 118(w)/128(w)/138 Comprehensive operating instructions for Sophos XGS Series network security appliances, including models XGS 118(w), XGS 128(w), and XGS 138. Covers installation, regulatory compliance, environmental considerations, technical specifications, interfaces, and operational procedures.
	Sophos XGS 116(w)/126(w)/136(w) Quick Start Guide A quick start guide for Sophos XGS 116(w), 126(w), and 136(w) firewall appliances, covering deployment, connection, setup, and LED codes.

Sophos XGS 136