Secure Web Gateway

Suggest, discuss, and vote on new ideas for Sophos Web Gateway. Complete web protection everywhere.

Secure Web Gateway

Suggest, discuss, and vote on new ideas for Sophos Web Gateway. Complete web protection everywhere.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Allow users (i.e. teachers) to specify website allow exception with password

    I think that it would help to allow the endpoint user the ability to add a site exception for a limited time or permanently. One would need an admin password that you'd need to specify at the web appliance or in the SEC. K9 works this way, and it saves a lot of admin time.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  URL Categorization  ·  Flag idea as inappropriate…  ·  Admin →
  2. Support vMotion

    Support for vMotion should be added to the product. A huge proportion of customers require vMotion on their virtual hosts at which point they are running an unsupported configuration.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  3. Sophos Web Monthly Dashboard

    Enable viewing of dashboard for a month not just for a day. This is important in comparing every month's statistics.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  4. Adding sophos_log for incomplete request with tag TCP_MISS

    getting alerts from sophos UTM firewall, saying that the web appliance has attempted to download from a restricted site.
    If the web appliance logged the failed requests as well as the successful ones, we might be able to track down which client tried to get to the malicious site.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  5. Granular Control Over Cisco ShareFile

    We have a lot of clients that use Cisco ShareFile. We'd like to have the same control over that site that was added in the last patch for Dropbox, Google Drive, and OneDrive.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  6. How do I determine the ip address from which a user accessed a site?

    Kindly add menu on reports on Sophos Web Appliance to trace what ip address the username use in accessing a website

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  7. automated backups require a more secure method than FTP

    As part of our PSN submission it came to light we were using ftp to backup our sophos ESC appliance. It was required that we use a more secure method such as sFTP which the sophos ESC appliance doesn't support. We have had to stop using automated backups.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  8. better integration between appliance and SEC endpoint software

    My facility uses a lot of "Kiosk" machines for users to get access to resources. We would like to see better integration between the appliance and SEC software, so that kiosk machines could be setup easier to allow basic browsing for the kiosk account, but force the users to give windows logon credentials when attempting to browse outside the LAN..

    currently, we have to specify each kiosk machine by IP address, which is turning a DHCP server into a static IP server, so why have it? also, we have to play configuration games by turning on or off the internet…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web in Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  9. Volume report from appliance to website

    The Volume report in the web appliance only shows connections from the client machines to the appliance HOWEVER it does not show information from the appliance to the websites.

    It would be helpful to know the other side of the connection because there might be requests that are using up the customer's bandwidth without them knowing and there are no indications in the current web appliance what it might be.

    An example is when a client machine requests to download a file from a website but it keeps getting disrupted. The appliance will try to keep downloading it until it…

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  10. Make web appliance reporting more granular

    On behalf of a customer - they would like more filtering options in the web appliance reporting when searching for site visits by user e.g filtering out information from add ons/different websites.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  11. Live Log Window

    Customer would like the ability to see the logs that would be sent via syslog offsite in a pop-up window.
    This would be extremely productive for smaller sites that don't want to run an additional service to debug what's going wrong with a given site.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  12. Add tag data as a reason code to Sophos_log output

    Platinum customer request: case 5133456

    "We’re trying to run a Splunk report on users who were allowed (act=1) to visit a list of sites that all have a particular tag"

    Currently the sophos_log doesn't record what tag was used when you see a blocked by tag reason (rsn=1409).

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  13. Report of all users browsing during a specific date/time.

    Reporting is too limited. We need to be able to run a report on all users’ internet access in one report. Right now, I would have to do individual user’s reports just to see what/who was accessing the internet during a certain period of time.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  14. Add optional fields to the user feedback submission form, such as a contact phone number or computer name.

    A customer considers this a very important enhancement as their previous web filter solution allowed the integration of a custom submission request into their ticketing system, allowing for automatic population with the pertinent details. This was proven to ease greatly request evaluations via their change tracking process.

    The UI could either allow adding custom fields to the user feedback submission page or be able to replace the page with a custom template. Example – would like users to be able to add contact phone, office/computer location, department, name, etc. along with the URL. This would allow customers to streamline administration…

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  15. Filetype Detection: .docx file type needs to be added for better granular controls

    in Web Appliance, .docx file type needs to be added for better granular controls . currently doc file, xls etc has controls individually, but not for new versions of those MS Office files, please consider. they are filtered as zip files at the moment. SUG77189 has mentioned this point

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  16. Add SWA Report: Top Bandwidth By Category (Top 20)

    The customer needs the following reports:

    Top Bandwidth By Category (Top 20)
    Top Bandwidth By Sites (Top 20)

    He needs this for audit.

    How would you rate the importance of this feature?; 1 = Critical, 5 = Nice-to-have:
    3 = Important for audit

    NOTE: Top Bandwidth by Site (20) is already established as another feature request.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Awaiting Feedback  ·  0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  17. SWA Browse Time By User Needs Hour Granularity

    We would like to have a report similar to “browse time by user” but includes time of day filters. For example, we would like to see browse time for a specific user between
    9 AM and 5 PM, Monday to Friday.

    How would you rate the importance of this feature?; 1 = Critical, 5 = Nice-to-have: 4

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  18. X-Forwarded-For feature for web appliance

    organisation uses the Google Apps suite quite heavily. We put so much load to them that they end up putting Captcha verifications on searches as per this doc: https://support.google.com/websearch/answer/86640?hl=en

    A way to mitigate these things from happening in scenario’s where organisations may have all of their traffic exiting one or two public IP’s is to implement the X-Forwarded-For into the HTTP header. It means that the web server in question (eg Google) can differentiate between one client and the other.

    13 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    8 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →

    We have implemented a back-end feature to add X-Forwarded-For headers to HTTP requests in version 4.2.0 of the Web Appliance. At present it must be enabled by Sophos support but we are considering adding it as a UI option in the future.

    Note that this feature only works for non-secure HTTP so it may not help for the Google situation where the default is for traffic to use HTTPS. This is because with HTTPS, the headers are all part of the secured, encrypted communication within an SSL tunnel. There is no equivalent protocol that would work on SSL traffic.

  19. Report Scheduler - Schedule a single report

    Customer would like to be able to schedule only a single report in the Report Scheduler, rather than a 'Package' of reports.

    For example, their managers receive scheduled reports, but are only interested in seeing users by 'Browse Time'. However, they cannot schedule a report that ONLY includes 'Browse Time'. Instead they have to schedule the Policy Compliance report which includes other data like 'Policy Violators'.

    They do not want their managers to be sent 'Policy Violators' data. This report 'scares' them. They are non-technical users and do not necessarily understand that people are sometimes unwittingly violating the policy.

    Therefore…

    13 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  20. Disble via-headers

    Customer would like to have the ability to disable the via-headers in the outgoing HTTP-Request to the server providing the page.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.