Sonicwall Bricking SMA devices
Posted by SnooGiraff@reddit | sysadmin | View on Reddit | 16 comments
SonicWall is committed to your security. Due to the significant vulnerabilities presented
by legacy VPN appliances, SonicWall will be disabling all SMA 100 devices on October
31, 2025. At this time, all SMA 100 appliances will lose user connectivity and functionality.
Migration programs will extend beyond October 31, 2025; however, service and support
will end on October 31, 2025.
Hows everyone planning for this? Just heard about this news on email
Gainside@reddit
they’re offering migration/replacement programs (sma 500v or other current gen appliances), but support fully dies on that date.
if you’ve still got sma 100s in the field, you’ll want to get ahead of it now
NoImprovement5648@reddit
would SMA 500v be disabled too ? KB article does not explain this well
brisull@reddit
Yes, The SMA500v is considered a "SMA 100" device. Now we have to struggle to spin up some replacement. Looking at Cloud Secure Edge, or possibly ZScaler - not sure yet. Sucks that we have to drop everything now to get this implemented in 58 days...
NoImprovement5648@reddit
awful move from sonicwall. Implementing backup solution at no cost in 58 days seems impossible :(
xXxLinuxUserxXx@reddit
Does anybody know if the devices are x86/amd64? I mean might be a option to get cheap hardware :D
Sadly couldn't find many information about the hardware or pictures of the internals. (But also still working so can't browse too much to find these information right now ;))
Putrid-Potential@reddit
When we dispose of ours, I can open it up and send you a picture. I also think it's terrible to waste hardware that still works.
SevaraB@reddit
So we're not going to invest in patching these, but we are going to invest in developing a remote kill switch.
GFY, SonicWall. I'd officially recommend NetGate over SonicWall at this point.
WackoMcGoose@reddit
Yeah, it sure seems like October 2025 is the "let's brick a billion consumer endpoint devices" month, doesn't it? I wonder if Sonicwall is hoping their announcement is drowned out in the background noise of Microsoft inevitably going "lmao we lied about Win10 extended support, we pushed an update that will force upgrade, or brick if not possible, all systems to Windows 11, and there will be zero devices in the wild running any version of Win10 on October 15th, thanks for the free money for extended support we never planned to actually fulfill btw"...
^(for legal reasons this comment is a joke, but we all know microsoft has the capability - both technical and [im]moral - to pull a google graveyard and do this)
DarkAlman@reddit
They are offering free replacement of the units
SevaraB@reddit
Replacement of the machine they chose to brick. They’d better replace those.
dinominant@reddit
Will those come with a manufacturer remote kill switch too?
DarkAlman@reddit
https://www.sonicwall.com/support/knowledge-base/sma100-end-of-support-no-charge-replacement-faq/250801111641957
Apachez@reddit
Bricking your hardware - how nice of them...
If they want to "protect" their customers they should open up the boot and include instructions on how you can reinstall with OPNsense on the hardware they no longer supports instead of bricking them and making them into e-waste.
Background_Fold9837@reddit
Based
ddadopt@reddit
I am betting that in November we are going to learn about Spinal Tap level "this one goes to 11" CVEs in SMA100 (or the crash retirement is to avoid disclosing such).
Their timeline sucks but their replacement policy is more than fair. no cost for two years of their ZTNA service or a free upgrade to their SMA1000 series is what they're offering (or SSLVPN licenses for their firewalls, but you'd be stupid to take that option).
NightOfTheLivingHam@reddit
I have one client on sonicwall, and it's a newer model.
I do not trust sonicwall myself.
I'd just replace them with something else entirely. though it is a free replacement. Unless they support wireguard, I wouldnt trust them for VPN anymore.