Secure Web Gateway

Suggest, discuss, and vote on new ideas for Sophos Web Gateway. Complete web protection everywhere.

Secure Web Gateway

Suggest, discuss, and vote on new ideas for Sophos Web Gateway. Complete web protection everywhere.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. More Granular Control Over Granting Access to File Sharing Services

    Rather than an all or nothing policy it would be extremely useful to be able to have more granular control over the level of access provided for file sharing services such as Dropbox. By more granular I mean being able to provide access to specific folders rather than the whole service. I have been advised by Sophos technical support this is currently not possible hence my request.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Policy (Appliance and Endpoint)  ·  Flag idea as inappropriate…  ·  Admin →
  2. Allow mDNS/Bonjour on the local LAN to work in the browsers.

    Allow mDNS/Bonjour on the local LAN to work in the browsers. The web protection currently blocks them for no apparent reason.Put an option in the software to allow mDNS to work, it IS the age of iOT after all.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  URL Categorization  ·  Flag idea as inappropriate…  ·  Admin →
  3. Logging of all requests hitting the web proxy

    It would be really handy if the logs showed failed authentication, or the option of showing these. If there are any other requests that hit the proxy which it ignores show these too.

    Resorting to packet capture on the client I think is over the top. It also can cause wasted time as presently as authentication exceptions put in like others do not always work for what ever the reason.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  4. spam notification for the recipient that a spam has been received and quarantine.

    Customer would like to have a feature to notify the recipient that a spam has been received and quarantine.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  5. Web Control: Option for live connect in web policy

    When in a large International MPLS connected networks, allow for remote sites to live connect via their local break out internet connection rather than all web browsing traffic being pushed to the appliance via the connected links. Thus being able to benefit from full categorisation and reporting.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Policy (Appliance and Endpoint)  ·  Flag idea as inappropriate…  ·  Admin →
  6. Allow individual users to be able to download certain extensions from individual websites

    We would like to be able to allow individual or a group of users to be able to download a file type from a certain website only.

    for example if ZIP files are blocked from being downloaded, however we have three users that often download from dropbox. We would like to allow these three users to be able to download ZIP files from dropbox only.

    24 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    7 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  7. when the firewall appears, allow it to have a option for turning it on or turning it off.

    When the firewall appears, allow it to have a option for turning it on or turning it off.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Policy (Appliance and Endpoint)  ·  Flag idea as inappropriate…  ·  Admin →
  8. SWA: Add support as a web application Skype Web (https://web.skype.com)

    Add support to Allow Skype Web (https://web.skype.com) in the "Web Applications" instead of allowing the whole category: chat.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  1 comment  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  9. Is there any to append custom data to the computers / servers registered within Sophos admin - Want to add Asset registration numbers to the

    Want to be ablet to append custom data fields to the computers / servers registered within Sophos Central -
    Want to add Asset registration numbers, contact number, etc. to the PC for our support guys.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Central Management  ·  Flag idea as inappropriate…  ·  Admin →
  10. Scan large file over 800 MB

    Company and Contact Information

    Company: Parmalat Australia

    Contact: Douglas Ellis07 38400 264

    Sophos Partner (if applicable): Global agreement

    Sophos Product Information

    Sophos Product: Sophos Web Appliance

    Version in Production:4.2.1.3

    Feature Request Summary

    How will this new feature address your business requirements?: We are getting large documents and pdf files sometimes into multiple gigabytes in zip files, as well as applications. Which are critical to our business. Having the ability to scan files over 800mb
    or a appliance that can be used to offload these scans would allow our users to get these files without IT having to connect to an…

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  11. Alter time frequency related to SWA to SMA sync jobs

    As an admin I would like to increase time frequency related to SWA to SMA sync jobs.
    Issue come up when SMA and SWA are connected through MPLS, when managed SWAs are several, these operations overwhelm the MPLS line.

    The goal would be to have the possibility to alter the sync frequency so these data could flow into low peak times.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Central Management  ·  Flag idea as inappropriate…  ·  Admin →
  12. Reflexion: Backups on your end for all accounts

    Reflexion accounts backup with 14-day retention. Even daily .csv backup would be better than nothing and super small. Helpful in cases like today where AD Sync utility deleted all the accounts because Exchange was removed before we disabled AD Sync (migration to 365).

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Central Management  ·  Flag idea as inappropriate…  ·  Admin →
  13. Web Appliance: Ability to disable "certificate error " error message in the blockpage

    A customer don´t wants the "certificate error " error message in e.g. the blockpage to be displayed, as this only confuses users.

    As soon as a user requests a blocked HTTPS website, besides the Reason and the Site, the blockpage shows:


    If your browser displayed a certificate error before displaying this page, you may need to install the web protection certificate authority. Click here to download it.

    This message is shown, no matter if HTTPS scanning and/or certificate validation is active.
    It shows even if the appliances CA already is installed on the browser.
    In that case when clicking on…

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  14. Reporting

    Customers wants to customize reporting for example adding certain group of users under Top Users by browse time

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  15. Upstream proxy settings not copied across to other SWA managed by SMA

    A Platinum customer has a large number of upstream proxy redirections which are set on the SWA5000. They wanted both SWA5000 and SWA5000b to have the same synced copy managed by the Management appliance.

    The settings are found under Network/Hostname/Upstream Proxies/Advanced options.

    It would be nice that upon joining the SMA1000 with the first appliance, that the option to upload the proxy list to the SMA1000 be allowed
    and then for the SMA1000 to have a configuration area for the same to push out to all web appliances in the management pool.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  16. Enable Kerberos Support for Windows Clients

    Currently all authentication between Windows machines and the Sophos Web Appliance occurs using NTLM, we would like to move to using only Kerberos.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  17. cocurrent users

    There is a part in dashboard that supposed to show the number of concurrent users and the number of concurrent users peak. Whenever I look into dashboard they shows 0
    I did open a ticket with support to ask for a fix and they route me to here to ask for a new feature.
    Basically I want to see how many users are trying to trigger Sophos rweb rules at a time. And a link that tells me what is the high bandwidth users, and who are the users that trying to go to denied websites.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Central Management  ·  Flag idea as inappropriate…  ·  Admin →
  18. Ability to clear DNS cache via Web Interface.

    Ability to clear DNS cache via Web Interface.
    A simple button similar to the Clear Cache button to clear DNS information.
    At the least a option on the console (CLI) could be added to clear this.

    If important business related websites change
    IP addresses the SWA will continue to use old DNS/IP information until
    cleared or TTL is reached. This causes major issues if the SWA is the only
    internet gateway. Clearing/Refreshing DNS requires a Sophos Console Support
    session. Clearing the cache should be a simple process.

    16 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  19. Captive Portal after SSO authentication

    Customer has various generic user AD accounts. After the client has authenticated with the WSA via SSO, they would like the option to present a captive portal for accounts which belong to certain AD security groups - so that the individual user can log in instead of using the generic user account. It is deployed with Static IPs for Captive Portal at present

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  20. On Sophos Email Appliance: Option to label messages with SPF and DKIM failed with reason: SPF Failed and DKIM Failed

    Company and Contact Information

    Company: Gemeente Lansingerland

    Contact: Nick van Drielen

    Sophos Partner (if applicable): GroupSecure

    Sophos Product Information

    Sophos Product: Sophos Email Appliance

    Version in Production: v.3.9.1.0

    Feature Request Summary

    How will this new feature address your business requirements?: It will deliver more safety to our organisation by helping our Servicedesk.

    How would you rate the importance of this feature?; 1 = Critical, 5 = Nice-to-have: 3

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.