Techdata: Sophos RED 15w Rev. 1 Usage hideseceditbutton. IMPORTANT: Edit this page only via the LEFT edit button below the dataentry box. After editing, please enter a short summary of your edit:. Which field has been changed? RED 15w requirements The traffic is handled according to the mode and wireless traffic type. Before you deploy a RED 15w (wireless), you must meet the preconditions for the mode. Sophos RED 15 Securely connects branch offices without local setup Sorry, this product is no longer available, Please contact us for a replacement.For Remote/Home use try. Hello, i dont't understand the good process to configure the wifi for the RED 15 W. Actually, the system work perfectly for the LAN port, how can easily create a WIFI with exactly the same access than the LAN and manage the password of this wifi?
Sophos List Price
The traffic is handled according to the mode and wireless traffic type. Before you deploy a RED 15w (wireless), you must meet the preconditions for the mode.
Standard/unified and standard/split
In standard/unified mode, all traffic of the RED is sent to the firewall.
In standard/split mode, all traffic on the split networks is sent to the firewall. All other traffic is sent to the default gateway specified by the remote DHCP server. This is usually the router to which the RED is connected at the remote site.
The following preconditions must be met for wireless:- A RED interface must be available and must have an IP address.
- A DHCP server must be running on the RED interface.
- DNS must be resolvable on the RED interface.
- Separate zone
- All traffic from a separate zone network is sent to XG Firewall using the VXLAN protocol. The packets will be encrypted while crossing the RED tunnel. The separate zone networks are connected to each other in XG Firewall. You must configure XG Firewall to allow traffic for the AWE client and VXLAN (RFC 7348) for the RED interface.
- Bridge to AP LAN
- The RED will bridge the SSID in the LAN network behind the RED. This includes LAN ports 1–4. Clients connected to this SSID are able to reach the RED tunnel endpoint interface on the firewall site if the firewall allows traffic from the RED network to the RED interface.
- Bridge to VLAN (Standard/Unified)
- The RED will tag all traffic from clients that are connected to this SSID using the configured VLAN tag. Clients are able to reach all network devices with the same VLAN tag that are connected to LAN ports 1–4 as well as a VLAN tagged interface on top of the tunnel endpoint interface on the firewall site.
- Bridge to VLAN (Standard/Split)
- The clients are able to reach all hosts behind the RED that own the same VLAN tag. Also, the tunnel endpoint is reachable if a VLAN interface is configured on top of the RED interface on the firewall site. The split networks cannot be reached as these are routed for untagged packets only.
Transparent/Split
In this mode, only split networks are reachable through the firewall. All other networks are routed through the router at the remote site. The remote network also provides DHCP and DNS. In this case, the RED interface must obtain an IP address through the remote DHCP server.- A RED interface must be available and must have an IP address.
- DNS must be resolvable on the RED interface.
- The remote DHCP server must provide DHCP option 234, which contains the IP address of the RED interface on the firewall site. (Otherwise, 1.2.3.4 is used.)
- Separate zone
- Same behavior as for Standard/Unified and Standard/Split.
- Bridge to AP LAN
- Same behavior as for Standard/Unified and Standard/Split.
- Bridge to VLAN
- The clients are able to reach all hosts behind the RED that own the same VLAN tag on LAN ports 1–4 as well as on the WAN port. The split networks cannot be reached as these are routed for untagged packets only.
After the recent End-of-Sale announcement for the legacy RED devices (which are mostly sold out), it’s time to focus on positioning the new SD-RED models. These devices are uniquely positioned to address the current demand for plug-and-play, secure remote connectivity – and particularly important right now, without needing on-site IT staff.
But with changes in pricing and connectivity options compared to their legacy predecessors, we’ve had many questions about positioning the new models.
This post will help you answer those questions.
Frequently Asked Questions
What are the main benefits of an SD-RED vs. a legacy RED model?
- Improved Performance: SD-RED 20 +177%, SD-RED 60 +136%
- SD-RED 20 =250 Mbps vs RED 15(w) 90 Mbps
- SD-RED 60 = 850 Mbps vs. 360 Mbps
- New and More Flexible Connectivity Options
- SFP Port for Fiber, Modular Bay for Wi-Fi 5 or 3G/4G Module,
- Power-over-Ethernet ports (SD-RED 60 only)
- Micro-USB
- Power Redundancy
- 2nd power supply option
- 5-Year Return-and-Replace Warranty
- 1 year on legacy models
- Plus: Many more such as:
- new mounting options (wall mount) and kits (DIN rail)
- newer CPU/platform
- lower pricing on SD-RED 60
When should I position an entry-level XG instead of SD-RED?
The image below provides a simple answer, but for more detail, check out this Partner News story.
Why is there no longer a w-model?
By offering a modular concept, we can provide a very flexible solution which customers can tailor to their individual needs for each remote site – both now and in the future. The Wi-Fi and 3G/4G add-on connectivity modules which are being used with SD-RED are already available for some XG and SG Desktop appliances – a great chance to go back to existing customers after a while and position an upsell option. This modular concept also allows us to offer more connectivity options without having to create multiple separate models. Every separate model we offer needs to be manufactured, certified, planned, forecast and stocked separately both in our logistics centers and those of our distributors. This new modularity offers benefits for our customers, our channel and our supply chain.
Note: In future software releases for XG and SG UTM, we will also add support for the SFP VDSL modem, but it is not supported today.
Why the price changes?
Sophos Red 15w Throughput
The legacy RED devices were introduced between mid-2014 and the beginning of 2016. That’s a long time by any measure but represents generations in technology and things have simply changed. The design for the new SD-RED devices allowed us to make some adjustments to the pricing based upon the components used (particularly those common to other appliances) whilst offering a much-enhanced feature-set. For the SD-RED 20 this resulted in a higher price than the RED 15, but with considerably newer and improved technology. For the SD-RED 60 this resulted in a lower price than the RED 50, despite the addition of the modular bay, PoE ports, etc.
Price Comparison SD-RED vs. RED
Pricing based upon DACH MSRP in EUR for reference only (USD pricing in NA is the same) – regional pricing may vary.
| Model | SD-RED 20 | RED 15 | RED 15w | SD-RED 60 | RED 50 |
| Unit price MSRP | EUR 350 | EUR 295 | EUR 365 | EUR 595 | EUR 645 |
| Options to add Wi-Fi | |||||
| Wi-Fi Module | EUR 125 | See RED 15w | Built in Wi-Fi | EUR 125 | Not available |
| APX 120 | EUR 170 | See RED 15w | Built in Wi-Fi | EUR 170 | EUR 170 |
| Warranty | 5Y included | 1Y included | 1Y included | 5Y included | 1Y included |
Further points for comparison are included in the presentation on the Partner Portal:
Which software releases include support for the SD-RED models?
The following releases are all available
- V18 MR1 and higher
- 5 MR11 and higher
- UTM 9.7 MR3 and higher
Note: The fixes for the slow Wi-Fi issue were also released https://community.sophos.com/kb/en-us/135517
Where can I find SD-RED collateral?
Use the link below to get the datasheet, a product overview presentation, product images and Visio stencils on the Partner Portal:
What other resources are available?
NEW:Compare models page for SD-RED (sophos.com – currently English only)
Reach out to your local distributor or Sophos sales contact for further help.