WatchGuard Product Update Blog
  1. New Fireware update releases

    In our last blog post of 2021, Corey shared 5 cybersecurity New Year's resolutions. Now is a great time to put one of those into practice: update to the latest version of Fireware!

    WatchGuard has posted new maintenance updates for Fireware 12.7.2 and earlier branches, 12.5.9 and 12.1.3. WatchGuard is moving away from providing customer specific (CSP) builds, and we prefer to issue generally available update releases that are provided to all for download.These releases include fixes to resolve internally detected security issues that were found by our engineers. 

    Do these releases affect me?
    Fireware 12.7.2 Update 1 (Release Notes) is available for: 

    • T Series: T20, T40, T55, T70, and T80
    • M Series: M270, M290, M370, M390, M400, M440, M470, M500, M570, M590, M670, M690, M4600, M5600, M4800, and M5800
    • FireboxV and Firebox Cloud

    WatchGuard has also released Fireware 12.5.9 Update 1 (Release Notes) for:

    • Firebox T10, T15, T30, T35, T50, M200, M300.

    And there is also Fireware 12.1.3 Update 7 (Release Notes) for: 

    • XTMv, XTM 25, 26, 33, 850, 860, 870,1520, 1525, 2520

    How to upgrade
    Firmware upgrades are included at no charge with active WatchGuard support subscriptions. The easiest approach is to use WatchGuard Cloud to schedule upgrades for one or many systems. HA Cluster pairs are now supported for upgrade from WatchGuard Cloud too. You can also upgrade individual systems directly from within the WebUI. Admins may also download the applicable packages from the WatchGuard Software Download Center

    Contact
    For Sales or Support questions, you can find phone numbers for your region online. If you contact WatchGuard Technical Support, please have your registered appliance Serial Number or Partner ID available.

  2. Five Cybersecurity New Year’s Resolutions You Can Achieve Today!

    The beginning of a new year marks a time of reflection and planning, and for making New Year’s Resolutions. Unfortunately, many resolutions are quickly forgotten once post-holiday life gets busy. At WatchGuard, we’d like to help you make and keep five important cybersecurity resolutions that you can complete today, and let you focus on the rest of your resolutions. Doesn’t it feel great to cross some resolutions off your list right away!

    Five cybersecurity resolutions you can cross off your list today!

    1. Close firewall management interfaces to the internet.It is very common to want to manage your Firebox remotely, and you can do this securely. However, exposing your Firebox management interfaces to the internet is not an industry best practice, and is not recommended by WatchGuard either. Use this Knowledge Base article for three recommendations for enabling secure remote management.
    2. Update to the latest version of Fireware.Start the new year right, with the latest version of Fireware (12.7.2, or the latest of whichever branch your Firebox uses) to ensure your WatchGuard deployment is leveraging the best power, speed, reliability, and security available today. Release notes can be found here.
    3. Change your passwords (now and regularly).Another easy-to-implement industry best practice is to change your passwords regularly. On Secplicity.org, we all too frequently cover breaking news regarding data breaches involving stolen credentials, and how those stolen credentials are utilized by adversaries. Using strong credentials, and changing them often, helps prevent lost or stolen credentials from being useful to the bad guys. You should equally follow this advice on your hardware appliances, for example regularly changing your Firebox credentials.   
    4. Implement Multi-factor Authentication (MFA). Using strong passwords, and changing them regularly, is a vital step, but you should also consider adding MFA, too! Implementing MFA to verify identities renders lost or stolen user credentials worthless to adversaries.
    5. Read our 2022 Predictions! In this year’s Cybersecurity Predictions, the WatchGuard Threat Lab suits up at the news desk to update you on the top security-related headlines that we could see in 2022. Watch to learn how hackers might target space, what will happen with cyber insurance, Zero Trust, and more! You can find them here.
  3. LTE Module Now Available for WatchGuard Firebox T80

    With a growing demand for connectivity to Cloud-based applications and services, the need for multiple connection options is higher than ever. Network environments are getting more diverse with a vast array of options to choose from. WatchGuard’s expandable network modules offer room to grow for the future. If the need for more network ports into the Firebox grows, you don’t have to do a costly rip-and-replace. Network administrators can simply add a new module to the existing appliance to increase port density.

    WatchGuard continues to expand connection options for our Firebox appliances. With the addition of the T80 LTE Module from WatchGuard, customers can leverage the integrated LTE connections to be sure they can stay connected to the applications and services they need to run their businesses.

    Key Features:

    • Easily integrate LTE connectivity without adding a new appliance
    • Adds additional Internet option for failover
    • Minimizes risk of Internet outages
    • Works with a variety of cell vendors
    • Simplified management to a single gateway appliance

    Visit the Firebox T80 page or Download the datasheet to learn more.

    Contact

    For Sales or Support questions, you can find phone numbers for your region online. If you contact WatchGuard Technical Support, please have your registered appliance serial number or Partner ID available.

  4. Fireware and WatchGuard Cloud Release Updates

    WatchGuard has released Fireware 12.7.1 and Fireware 12.5.8. The new releases include some enhancements, important security updates, and also support some new updates to the Firebox management capabilities in WatchGuard Cloud.

    Key Enhancements:

    FireCluster System Actions. FireCluster is the high availability solution for WatchGuard Fireboxes and allows clustering of multiple appliances to improve network performance and scalability. Along with the new Fireware releases, you can now upgrade, reboot, and fail overyour locally-managed FireCluster.

    FireCluster System

     

    Cloud Management for Virtual Fireboxes. WatchGuard Cloud enables you to simply set up your devices, and to configure security and manage networking across multiple Fireboxes with templates. You can now manage the configuration of FireboxV and Firebox Cloud in WatchGuard Cloud with Fireware v12.7.1.

    WGC Firebox V and Firebox Cloud

    Support for Azure Active Directory for Fireware integration with Authpoint. The AuthPoint authentication server on the Firebox now supports Azure Active Directory users for Mobile VPN with SSL, Mobile VPN with IKEv2, and the Firebox Authentication Portal.

    Does this release affect me?

    Fireware 12.7.1 is available for:

    • T Series: T20, T40, T55, T70, T80
    • M Series: M270, M370, M400, M440, M470, M500, M570, M670, M4600, M4800, M5600, M5800
    • FireboxV and Firebox Cloud

    Release Notes and What’s New Presentation (and webinar!) provide more details.  

    Fireware 12.5.8 is available for:

    • T Series: Firebox T10, T15, T30, T35, and T50
    • M Series: Firebox M200, and M300

    Release Notes provide more details. 

    WatchGuard has also ported all applicable security updates to any XTM appliance that is still supported. Customers are recommended to continue to upgrade these old platforms to latest firmware where those appliances are still in use.

    Fireware 12.1.3 Update 6 is available for:

    • XTM Series: XTM 800, 1500, 2500, and XTMv

    Release Notes provide more detail.

    WSM v12.7.1 is available to manage all supported Firebox and XTM models.

    How to upgrade
    Firmware upgrades are included at no charge with active WatchGuard support subscriptions. The easiest approach is to use WatchGuard Cloud to schedule upgrades for one or many systems. You can also upgrade individual systems directly from within the WebUI. Admins may also download the applicable packages from the WatchGuard Software Download Center.

    Keep Up with What’s New in WatchGuard Cloud
    WatchGuard regularly updates and improves on the WatchGuard Cloud platform. To learn more about the developments to WatchGuard Cloud, please refer to the “What’s New In WatchGuard Cloud” presentation, and most recent Release Notes.

    Contact
    For Sales or Support questions, you can find phone numbers for your region online. If you contact WatchGuard Technical Support, please have your registered appliance Serial Number or Partner ID available.

  5. UPDATE: Legacy TDR UI no longer available as of 19 July 2021

    Greetings!

    We would like to provide an update on the Legacy TDR UI. We will be discontinuing the Legacy TDR UI on 19 July 2021. After this date, all existing direct links to the Legacy TDR UI will be removed from the watchguard.com portal and existing bookmarks directly referencing your regional TDR will be redirected to WatchGuard Cloud. 

    This change requires everyone to begin using the TDR UI that is integrated in WatchGuard Cloud. Before you can manage accounts and licenses for TDR, you are required to perform a one-time migration procedure. During this migration, you will manually link an existing WatchGuard Cloud Tier-2 account to an existing TDR managed child account. When you first browse to the Migrate TDR page in WatchGuard Cloud, you are presented with a wizard explaining the migration process, step-by-step. While we suggest using the wizard to complete your migration, you can also follow the steps in this knowledgebase article. Please perform this migration as soon as possible to avoid being unable to manage your TDR Accounts.  

    Thank you, 

    The WatchGuard Product Team