To learn more about Out-of-the-box Integrations and their benefits, please refer to this article.

Requirements

• Sophos Firewall
• Sophos Firewall with Web Protection
• Lumu License
• An active Lumu Defender subscription

Add Integration

1. Log in to your Lumu account through the Lumu Portal and navigate to the integrations screen.

2. Locate the Sophos Firewall integration in the available apps area and click to add, then click to view details.

3. Familiarize yourself with the integration details available in the app description and click the button below to activate the integration.

4. To activate the integration, add a description and select the threat types you want to include.

5. Once you create the integration, you will be provided with the Integration URL

Once the integration is activated, the Suspicious Object Management section will be updated with confirmed compromises found by Lumu within the preceding 3 days.

Configure Sophos Firewall

1. Start with opening the Sophos Firewall platform:

2. You will see the dashboard with all registered activity. Go into the Protect > Web option, where you can register Categories with an external database that will feed your Firewall with malicious lists.

3. Click on the Categories option to add a new category.

4. Complete the following steps:

4. Finally, add the Web Category you just created to an existing Web Policy in order to control and manage Web traffic based on it.

You can create your own Web Policy for Lumu if necessary.

You must use the Web policy referencing Lumu Web category in your Firewall policies. That way, your Sophos Firewall will block the traffic related to the database provided by Lumu.

Bear in mind that the configuration depends on your environment’s characteristics and must be done according to your business needs. For more information on how to carry out this procedure, please refer to Sophos Firewall’s official documentation.