NG Firewall Version 15.0

See What’s New

Untangle NG Firewall v15.0 adds a new layer of security protection to NG Firewall. Included in this release is a new app, Threat Prevention, specifically used to look at network traffic as it passes through NG Firewall, reviewing the IP address of sessions passing through. This latest release provides an additional layer of security that further strengthens the already multi-layered solutions Untangle offers, keeping SMBs’ assets safe and secure.

Version 15.0 Highlights

Threat Prevention App

  • New Threat Prevention app blocks access to IP addresses considered to be Risky or Suspicious using the Webroot BrightCloud® reputation score associated with the server hosting the service. The reputation score looks at a web page, web page associations, files, and historical security issues the page may have had, to determine the likelihood that an IP address may pose a risk to the network.


  • For content sensitive locations, such as schools and libraries who have KidzSearch filtering activated in NG Firewall in place, search terms entered into Google or Bing are also filtered through a kids-appropriate filter, making the internet safer and appropriate.

Additional Enhancements

  • Administrators can now set up rules to organize alerts into folders, highlight them in their inbox, as well as specify custom information pertinent to their deployments.
  • Ability to submit a category that a URL should be classified as, through NG Firewall’s Web Filter app.

For a full list of changes in NG Firewall 15.0, please see the changelog.

Pricing and Availability

Untangle NG Firewall version 15.0 is available as a free download. Current Untangle customers will be able to upgrade seamlessly at no charge.

Threat Prevention App is included in NG Firewall Complete and is not available for individual purchase.


Register for the Community Webinar: NG Firewall 15.0 and Threat Prevention App here.

Important Technical Notes

This release includes a Debian Linux kernel update to version 4.9.0-11 that will require a reboot.

Because upgrading to NG Firewall 15.0 requires a reboot, consideration should be made on the timing for the upgrade to ensure it is done at a time when an upgrade followed by a reboot is acceptable.

Version 14.2 Highlights

Untangle NG Firewall 14.2 includes significant enhancements to web security and content filtering, the ability to synchronize users with Azure Active Directory, and enhancements to intrusion detection and prevention.

Visibility and Control for Educational and other Content-sensitive Environments

These capabilities provide network administrators in content-sensitive environments such as schools, libraries or social services to meet compliance requirements while safeguarding users.

  • Web Filter enables administrators to flag, block or alert based on search words on Google, YouTube, Ask, Bing, and Yahoo.
  • Enforcement of safe search for YouTube; YouTube usage can be locked down to show only content that meets the ‘safe search’ criteria.
  • Logging of YouTube searches performed on the network.
  • Enhanced malware detection with an even greater percentage of the internet categorized to block more attacks originating from web browsing.

Directory Connector: Azure Active Directory

Directory Connector has been updated to allow users to connect via Azure Active Directory. For those customers using Office365, they can now utilize their existing directory service with accounts, groups and policies already established. This saves customers time during deployment, general maintenance of user groups and policies, and when provisioning or off-boarding users.

Intrusion Prevention: Better Performance & Easier Customization

  • Intrusion Rule ID is now visible so IT admins can see which rule was responsible for a log/block action in reports.
  • UI performance updates for better user experience and faster load times.

Additional Enhancements

  • Ability to hide the network name of the wireless access point. This provides increased security from hackers and devices looking to join networks with malicious intentions.
  • Ability to set the time for Configuration Backup to be performed.

For a full list of changes in NG Firewall 14.2, please see the changelog.

Important Technical Notes on Upgrade

Untangle NG Firewall version 14.2 and above implements URL categorization powered by Webroot Brightcloud®. This replaces the same functionality provided by Zvelo in prior versions. You can find answers to common questions related to the upgrade in this article. By October 30, 2019, customers will need to have upgraded to at least 14.2.0 in order for categorization of web pages to work.

Pricing & Availability

Untangle NG Firewall version 14.2 is available as a free download. Current Untangle customers will be able to upgrade seamlessly at no charge.


Register for the Community Webinar: NG Firewall Version 14.2 and zSeries Appliances here.

More Info

Webinar & Video Resources

Previous Minor Release: Version 14.1

Easily Manage Remote NG Firewall Appliances with Zero Touch Provisioning

Zero touch provisioning enables easy access and configuration of NG Firewall appliances, without requiring physical access to the appliance. This is an ideal scenario for MSPs who need to install and manage appliances for their clients without having to visit each client site. The appliance simply needs to be connected to the internet and the serial number provided to the MSP or IT admin for remote access to be initiated via Command Center. From there, the MSP or IT admin can set up the appliance to fit the needs of that location. The admin can also set up a template so that the appliance is immediately configured based on the template once it is connected and synced to Command Center, reducing management overhead and resulting in cost savings.

Intrusion Prevention: More Powerful & Easier to Configure

The Intrusion Prevention application has been updated for better performance and easier maintenance. The IPS engine is now using Suricata, instead of Snort, for improved technical performance and management. The Intrusion Prevention app now has automatic configuration for simplified setup and basic default settings. IT admins can go further to add additional rules, if necessary.

Additional improvements include:

  • Signatures are updated on a daily basis
  • Reduce false positives with recommended actions
  • Rules based on available system memory, preserving performance

For a full list of changes in NG Firewall 14.1, please see the changelog.