Secure Web Gateway

Suggest, discuss, and vote on new ideas for Sophos Web Gateway. Complete web protection everywhere.

Secure Web Gateway

Suggest, discuss, and vote on new ideas for Sophos Web Gateway. Complete web protection everywhere.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Update HTTPS Scanning onward Hello

    Currently once HTTPS scanning is enabled, the onward TLS Hello from the Web filter advertises all available suites, which decreases the security of the user agent configurations. Either there should be a GUI option to remove older Cyphers or the filter should copy the advertised suites from the users client hello

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  2. Not blocking many adult websites

    web security is very bad

    even after selecting option to block adult content, its not blocking many adult websites

    http://www.freebunker.com
    http://www.imagesnake.com
    http://www.imgcarry.com
    http://imgprime.com

    and may more
    please fix it immediately

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  3. Logging of all requests hitting the web proxy

    It would be really handy if the logs showed failed authentication, or the option of showing these. If there are any other requests that hit the proxy which it ignores show these too.

    Resorting to packet capture on the client I think is over the top. It also can cause wasted time as presently as authentication exceptions put in like others do not always work for what ever the reason.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  4. Disable/Remove "Login as a guest user" via Captive Portal

    Disable/Remove "Login as a guest user" via Captive Portal.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  5. Socks proxy support with http proxy

    Sophia web appliance should support socks5 too. This would allow MacOS and Cisco Anyconnect to integrate more with it. Currently Anyconnect sets all the MAC proxy settings to the same proxy server but because socks isn't available only certain functions work properly.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  6. SWA should be able to detect/block TOR (the onion router) traffic!

    a customer (see sophtrac 6741961 for details) asked for an feature/improvement for the SWA. It should be able to detect and block TOR traffic (The Onion Router)
    --> https://en.wikipedia.org/wiki/Tor_(anonymity_network)
    Thanks!

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  7. Enable XF forwarding on Web Appliance

    Enable XF forwarding on Web Appliance

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  8. Web appliance automatically clear usercache

    Submitting on behalf of client. On the backend of the web appliance if you can automate the user cache to purge older users that have authenticated. Currently anything in the user cache is kept permanently - if there is no new authentication and coming from the same IP this would cause incorrect reporting data.

    For example any users thate authenticated and is still in the cache over 'x' amount of months/days should automatically delete.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  9. As an admin I would like to test policy application also for roaming endpoints.

    On Sophos Web Appliance, actual policy tester tool does not care of roaming endpoints, if additional policy is applied for machines connecting from outside the local network, policy check results does not allow administrators to know which policy is currently applied for roaming endpoitns.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  10. local site list

    Improve the way the web appliance handles local site lists when you reach over 5000+, When too many local site lists it causes websites not being tagged correctly, or when adding local site lists it doesn't go through properly

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  11. (user- or group-) policy based option to restrict maximum filesize per download

    customer called with the need to restrict the maximum filesize of single download: like setting up a policy for a usergroup XY to allow downloads with a maximum filesize of 50MB.
    Thanks for considering ;)
    Sophtrac

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  12. SWA: customer would like to receive a copy of the 'support request'

    hi,
    customer said, that he would like to receive a copy of the message sent by the "support request via email", which can be used to send additional information from the appliance to the sophos tech support .

    Customer requested the option to receive a copy of the content to the email address he added in the related input mask.
    thanks!

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  13. SWA: Send email alert for infected hosts

    Customer would like an email alert to be sent, as soon as the SWA detects an infected host, as displayed on the dashboard.
    This would assure a faster investigation for machines that may be infected.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  14. goto meeting

    Customer would like to request category specifically for remote such as GotoMeeting or similar application

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  15. On reports show the duration the user visited the URL

    On reports show the duration the user visited the URL

    Name of the Company: The Automotive Research Association of India

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  16. Scan large file over 800 MB

    Company and Contact Information

    Company: Parmalat Australia

    Contact: Douglas Ellis07 38400 264

    Sophos Partner (if applicable): Global agreement

    Sophos Product Information

    Sophos Product: Sophos Web Appliance

    Version in Production:4.2.1.3

    Feature Request Summary

    How will this new feature address your business requirements?: We are getting large documents and pdf files sometimes into multiple gigabytes in zip files, as well as applications. Which are critical to our business. Having the ability to scan files over 800mb
    or a appliance that can be used to offload these scans would allow our users to get these files without IT having to connect to an…

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  17. SWA: Add support as a web application Skype Web (https://web.skype.com)

    Add support to Allow Skype Web (https://web.skype.com) in the "Web Applications" instead of allowing the whole category: chat.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  1 comment  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  18. Web Appliance: Support Intermediate Certificates for Certificate Authority

    Customer would like to use a custom Certificate as Certificate Authority.
    According to an internal KBA "Customer Upload of Signing Certificate" the CA Certificate needs to be a top-level Root CA.
    The customers CA Certificate is not a top-level Root CA, so he needs to be able to also import an Intermediate Certificate, and therefor requests this feature

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  19. Override button for blocked sites

    Reference community post :
    https://community.sophos.com/products/web-appliance/f/5/t/79013

    User would like to have an override button on the blocked web pages, where administrative users can simply enter their username, password and a time to temporarily override a blocked page.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  20. Change the behavior of querying DNS server, which are serialize at the moment

    Customer figures that the SWA serializes DNS-queries and will only answer the 2nd when the 1st was answered or runs into a timeout.
    The other day a dDOS was run agains the teamviewer nameservers, which then completely blocked the SWA.

    URID[13516]: T=13516 7592 3 - [warn] aborting request after 44.039s with no SXL response
    URID[13516]: T=13516 7594 3 - [warn] aborting request after 44.038s with no SXL response
    URID[13516]: T=13516 7600 3 - [warn] aborting request after 44.038s with no SXL response
    /USR/SBIN/CRON[20335]: (root) CMD (TZ=GMT /usr/sbin/logrotate /etc/logrotate.conf)
    URID[13516]: T=13516 ------ 2 - Warning: LATE TIMEOUT: dns context 0 should…

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.