Kerio Control 9.4.2 Build 7290 Patch 1 (Firewall)
Kerio Control (Kerio WinRoute Firewall) is an award-winning UTM firewall designed to protect businesses from a comprehensive range of invasive and crippling corporate network threats.
Kerio Control’s auto-updating security layer detects and prevents emerging threats automatically while providing network administrators with flexible user policy tools. The software also provides the complete bandwidth management and QoS control, detailed network monitoring, and IPsec VPN connectivity for desktops, mobile devices and multiple sites.
Designed for corporate networks, it defends against external attacks and viruses and can restrict access to websites based on their content.
Kerio Control provides superior network protection and intelligence that is stable, secure, and above all, simple to manage. That sets new standards in versatility, security and user access control.
Kerio Control is equipped with VPN server, optional embedded Sophos Anti-Virus, integrated customizable ISS Orange Web Filter, and user-specific Internet access management. Also provides a multi-layer architecture for protecting networks, servers and users.
Kerio has added a new IDS/IPS system. It plays an instrumental role in detecting and preventing application exploits and malicious traffic. Just like built-in Sophos gateway antivirus, the IDS/IPS gets frequent automatic updates to ensure that networks are continuously shielded from emerging threats.
Intrusion Prevention System
- Signature based backet analysis
- IP blacklisting
- Rule management
ICSA Labs Certified Firewall
- Industry accepted standard test criteria
- Corporate level criteria – enforces default security policy immediately after installation
- Secure access remote administration – all changes to security policy are logged
Application Layer and Network Firewall
- Create inbound and outbound traffic policies.
- Protect servers without the need for a DMZ through application-friendly NAT traversal.
- Perform stateful packet and protocol inspection and logging.
Anti-virus Protection
- Filter viruses and worms from incoming and outgoing traffic.
- Simplify deployment with integrated Sophos engine.
- Dual anti-virus ready for extra protection.
Web Filter
- Block access to websites with harmful or inappropriate content
- 53 different categories of web content
- Apply categorization to traffic statistics
VPN Server
- Unlimited site to site connections
- Mac, Windows, and Linux VPN clients
- Clientless SSL-VPN for Windows networks
Changes in Kerio Control 9.4.2 Patch 1 (October 17, 2022):
Fixes:
- The virtual network adapters become unavailable (on VMware deployments only)
- Missing VMware images
Changes in Kerio Control 9.4.2 (October 11, 2022):
New:
- Kernel upgrade
- 2FA token expiration configuration for VPN
- HTTP/S redirection in reverse proxy
Fixes:
- Issues with Mac upload speed degradation
- Updated IPSec VPN
- Updated IPsec SNAT
- WiFi authentication errors with Radius
Changes in Kerio Control 9.4.0 (May 9, 2022):
New:
- New Kernel
- New 2FA token expiration configuration for VPN 2FA
- New HTTP/S redirect function in reverse proxy
Fixes:
- KerioControl update server rejects upgrade from the latest HW box series.
- HA stats temporary files are not being cleared.
- Expired build-in “Let’s Encrypt certificates” have been renewed.
- Fixed XSS security vulnerability in WebAdmin.
- Getting checksum alert after upgrade to 9.3.6p1.
- Free radius server fails to start.
- Weekly and monthly reports are not being sent automatically.
- Google remote desktop is not blocked once configured in content filtering rules.
- Incorrect low free disk alert when data encryption is on.
- Login page customizations are not working on Logic/Guest/User alerts pages.
- Alert column info is blank for user transfer quota.
New in Kerio Control 9:
- MyKerio. Multiple administrators can manage appliances within an organizations
- Shared definitions in MyKerio. Allow you to create and manage IP address groups, URL groups and time ranges directly in MyKerio and share them across multiple Kerio Control appliances in a single organization.
- 2-step verification in MyKerio. The 2-step verification in MyKerio improves the security by requiring an authenticated user to provide an additional form of identification.
- Preventing denial of service attacks. The connection limits configuration that protects against denial of service (DoS) has been redesigned and now includes enhanced default settings.
- Bandwidth management works on IPv6. Supports bandwidth management on IPv6 including custom rules and bandwidth reservation.
- Zero-touch provisioning of Kerio Control Box. Deploy it using MyKerio. If Kerio Control Box is running and connected to the Internet, you can activate and configure the appliance remotely in MyKerio.
- Automatic identification of network interfaces. During installation, Kerio Control identifies Internet interfaces and local interfaces automatically.
Homepage – https://www.gfi.com
System requirements:
Software Appliance
- CPU: 2 GHz
- Memory: 4 GB RAM
- Hard drive: 12 GB HDD space for OS, product, logs and statistics data
- Network interface: 2 Ethernet (10/100/1000 Mbit)
- HW: KerioControl is based on Linux kernel version 3.16. Hardware supported by this kernel is required.
For list of supported hardware see https://support.gfi.com/hc/en-us/articles/360011357960
VMware Virtual Appliance
- VMware Workstation/Player 11+
- VMware Fusion 7+
- VMware ESXi / vSphere Hypervisor 5.5+
- CPU: 2 GHz
- Memory: 4 GB RAM assigned to the virtual machine
- Hard drive: 12 GB assigned HDD space for OS, product, logs and statistics data
- Network interface: 2 assigned virtual network adapters
Hyper-V Virtual Appliance
- Windows Server 2019
- Windows Server 2016
- Windows Server 2012 R2
- Windows Server 2012
- Windows Server 2008 R2
- CPU: 2 GHz
- Memory: 4 GB RAM assigned to the virtual machine
- Hard drive: 12 GB assigned HDD space for OS, product, logs and statistics data
- Network interface: 2 assigned virtual network adapters
Size: 11.3 MB