Scheduled firmware upgrades on Metronet firewall platform
Start: Tue, Jan 19th 2016, 18:00
End: Fri, Jan 29th 2016, 22:00
On Saturday 12th January a high risk security issue was announced by Fortinet, our managed security supplier. We assessed the risk against our managed firewall appliances and determined that a number were affected. In order to mitigate the exploit we have applied interim configuration changes to affected firewalls.
This vulnerability allows remote ssh administrative access to devices, however to fix this vulnerability we need to apply a firmware upgrade. We have identified which firewall services are affected and we will be informing customers directly when we are carrying out the critical upgrade. We will be applying these upgrades in two separate batches.
19/01/16-21/01/16 We will be carrying out the works on our dedicated customer firewalls in 4 hour windows each day, you may see up to 10 minutes of service disruption.
26/01/16-28/01/16 We will be carrying out the works on our virtual clustered firewalls in 4 hour windows each day, you may see intermittent disruption whilst the firewalls failover between primary and secondary during the upgrades.
Further details on this security issue can be found at the below link:
https://www.fortiguard.com/advisory/fortios-ssh-undocumented-interactive-login-vulnerability
We apologise for any inconvenience caused and would like to re-iterate that your firewall service has been remedially secured and tested, if you have any queries please do not hesitate to call the support team on 0161 822 2580(opt 1)
Regards
Metronet Support