Secure Web Gateway

Suggest, discuss, and vote on new ideas for Sophos Web Gateway. Complete web protection everywhere.

Secure Web Gateway

Suggest, discuss, and vote on new ideas for Sophos Web Gateway. Complete web protection everywhere.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Ability to search logs with IP address or domain of a site visited by a user utilizing the CWG.

    One of our largest platinum service CWG client who is using cloud web gateway services globally requests this feature to be added as soon as possible as this is hindering their global response capabilities.

    They are not able to filter logs under logs section of CWG dashboard on Sophos Central by entering destination IP or domain a user has visited.

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  2. Web appliance support for ESXi 6

    Customer would like to use ESXi 6 but all documentation says its not supported.
    They have installed it anyway and it appears to be working so they want it added to the supported platform lists.

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  3. Allow or block user agent strings in HTTP headers

    For customers without our Endpoint Application Control, provide the ability to allow or block user agent strings in the HTTP headers to control applications like web browsers, etc.

    This has been requested by a 3,500 user Government prospect

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  4. Option for letting clients disable the gateway

    Its sometimes very bad when users cant visit certain sites because they dont allow proxies/vpn´s

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  5. Direct URL Submission to Sophos from the Admin GUI

    Include the ability to submitted a recategorization request to Sophos directly from the Search -> User Submissions -> Sites page. This would make it much easier for admins to submit URLs to Sophos.

    This could be expanded to provide management capabilities for these requests. If sent to Sophos, they go into a submitted state, checked against the data periodically and then moved to a completed state once the categorization has been updated.

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  6. Alerts: Support authenticated SMTP connections

    Provide the ability for reports to be sent via an authenticated SMTP server. Increasingly SMTP servers are set up to require authentication before messages can be sent. Organizations that use cloud-based email systems in particular require this capability.

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  7. Better security on web admin gui access

    Customer observed some vulnerabilities of Sophos Web Appliance which make it a high risk for hacking.

    1. Access to Sophos Web Console - Since the IP address of SWA written in the
    Proxy settings of the Internet browser, it is very much simplier to copy it
    by any user and will just type in the URL
    https://x.x.x.x (x.x.x.x - IP address of the SWA written in the Internet
    Browser proxy settings). We suggest that access to SWA console must be in
    different port (example:
    https://192.168.1.100:4434)

    2. Unlimited attempt to access accounts in the Sophos Web Console - We don’t …

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  8. Option to remove old connected endpoints

    We've had multiple customers requesting the option to remove old endpoints from the connected endpoints list on the WSA.

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web in Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  9. Send TCP-KeepAlive Packets

    When Scanning files the Appliance should send TCP-Keep-Alive packets in order for clients to see that the connection did not go stale.
    Customer would like to have a choice of either the patience page, tcp-keep-alive, or nothing. Selection could be made on the Configuration->Notification Page Options Page

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  10. Change user request-email address

    When a user requests a page or want to have a category changed, the email address where the request is going to should be configurable (instead of going to the alert recipients in general)
    It also could be usefull for other customers using role based management to send user request mails e.g. to a helpdesk admin, and not to the appliance admin.

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  11. When a URL is blocked, the log should have more detail

    When a URL is Blocked, the log should have more detail as to why the URL was blocked. We should be able to see these details so we can troubleshoot and fix the issue instead of calling support.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  12. websocket support in SWA

    Hi..

    customers would like to have websockets (RFC 6455) being supported/transported by the SWA.

    Thanks a lot for considering!

    Kind regards..
    uɐɟǝʇS

    (Sophtrac 7432710)

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  13. Please add "WeTransfer" as WebAppliacation in SWA

    "WeTransfer" should be available in WebAppliaction on the SWA.
    Please add the Web Application control for this webservice on the SWA!
    (Due to customers request Sophtrac 7041991)
    Thanks for considering!
    Kind regards...

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  14. automated backups require a more secure method than FTP

    As part of our PSN submission it came to light we were using ftp to backup our sophos ESC appliance. It was required that we use a more secure method such as sFTP which the sophos ESC appliance doesn't support. We have had to stop using automated backups.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  15. UI: Improve Additional Policy UI performance

    Improve the UI performance of the SWA when using a large number of policies.

    The GUI is slow to refresh on a system with 150+ additional policies. They have a large number of policies because this is a central SMA which manages policies for a number of schools.

    It can take over 25 seconds to move an additional policy one place in the additional policies list.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  16. Syslog: Log all system data, not just web traffic

    Advanced logging is needed to troubleshoot issues.

    Currently syslog only logs events such as what sites user’s visit. We need to be able to see when the appliances are rebooted, any errors that are occurring, amount of current connections on each appliance, incoming web requests, and basically anything Sophos Support can see from the backend.

    This feature would help us greatly in troubleshooting issues we are currently seeing. It is frustrating to have to contact Sophos Support when issues are occurring do to the impact to our user’s while we wait on support. If we were able to see this…

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  17. Allow static ARP entries

    Static ARP entries would almost eliminate the threat of ARP poisoning

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  18. More granular search parameters required for Recent Activity Search

    When conducting a Recent Activity Search By User it would be more than helpful to display the IP address of the device that was being used by the user at the time of URL access. We have had a number of occasions where Indicators of Compromised servers have been flagged to us and we need to trace the users and devices that have attempted to access these sites however this is not possible as the search parameters and detail given is not granular enough. The IP addresses are shown when you use a By Suspicious Activity search so the information…

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  19. Reports which file type is blocked.

    Currently if a user has a problem with a certain site because a file type is blocked it is not displayed in the reports.

    So have to investigate this in the syslog if you have set it up or call Sophos support which takes too much time.

    Can the reason for the file type block be added in the reports?

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  20. Web appliance status to show free disk space

    Following an outage that impacted end users through appliance not accepting connections resulting in web pages being inaccessible, requesting functionality to display used and free disk space on (virtual) Web Appliance. It would also be useful to be able to query this using SNMP (see separate Idea submitted by another user in 2012) and/or receive email alerts when disk free space was below a set threshold.

    Background is that disk was so full that even after expanding virtual disk, the inbuilt appliance function to expand the disk would not execute because it could not write the necessary scripts to the…

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.