Secure Web Gateway

Suggest, discuss, and vote on new ideas for Sophos Web Gateway. Complete web protection everywhere.

Secure Web Gateway

Suggest, discuss, and vote on new ideas for Sophos Web Gateway. Complete web protection everywhere.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. People list to show Domain as well as AD Username

    We use AD Sync over multiple domains. Currently we can only see the AD username but cannot see which domain this belongs to. This makes it difficult to report on individual domains, and impossible to tell which user is which when the same name is used on more than 1 domain.
    Ideally the username would be shown as: domain\username

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  2. Email Gateway - Message Summary need more detailed information.

    I'd like the ability to drill down into the bar graphs to see user name and messages which are being reported on.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  3. Allow single host route CIDR /32

    Currently it's not possible to add a route to a single IP address (CIDR /32), but the smallest destination CIDR address is a /31. In some circumstances it's mandatory to use a route to a single IP address.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  4. Implement some basic security features.

    The standard Web Gateway install exhibits the following behaviour that really should be fixed.

    Revoked leaf certificate - treats as trusted.
    Bad HPKP pin - treats as trusted.
    SHA-1 signed certificate - treats as trusted.
    Invalid SCT - treats as trusted.

    I mean come on, not checking for revoked certificates is pathetic in what's meant to be a security product.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  5. Request to support VMWare ESXi 6.5 for the virtual web appliance

    Request to support VMWare ESXi 6.5 for the virtual web appliance installation.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Central Management  ·  Flag idea as inappropriate…  ·  Admin →
  6. Allow access to specific URLs with the rest of the domain blocked

    It should be a feature to be able to allow access to certain pages within domains that are blocked.
    For example block google docs as a whole but allow access to a specific URL for access to a document without having to open up access to the whole of Google Docs.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Policy (Appliance and Endpoint)  ·  Flag idea as inappropriate…  ·  Admin →
  7. Bandwidth Throttling Based On Category

    It would be very helpful to be able to throttle bandwidth usage to sites in certain categories.
    For example limiting the bandwidth to sites such as YouTube.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Policy (Appliance and Endpoint)  ·  Flag idea as inappropriate…  ·  Admin →
  8. LastPass

    In Sophos Central > Web Gateway > Application Control > Password/License recovery tool section, please add LastPass password manager

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Central Management  ·  Flag idea as inappropriate…  ·  Admin →
  9. As an admin I would like to test policy application also for roaming endpoints.

    On Sophos Web Appliance, actual policy tester tool does not care of roaming endpoints, if additional policy is applied for machines connecting from outside the local network, policy check results does not allow administrators to know which policy is currently applied for roaming endpoitns.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  10. SWA: Add support as a web application Skype Web (https://web.skype.com)

    Add support to Allow Skype Web (https://web.skype.com) in the "Web Applications" instead of allowing the whole category: chat.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  1 comment  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  11. Override button for blocked sites

    Reference community post :
    https://community.sophos.com/products/web-appliance/f/5/t/79013

    User would like to have an override button on the blocked web pages, where administrative users can simply enter their username, password and a time to temporarily override a blocked page.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  12. Custom Block Pages: Add a "local time" variable

    The customer asked for a variable that contains the local time instead of GMT, e.g. %%DATETIME%%, the only one available at the moment is this - %%DATETIME_GMT%% which cannot be changed from GMT.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  13. realtime website browsing alerts

    Being aware in real time of visited web sites that have malicious code, virus’s or other security issues means we can react quicker to block these sites at the appliance.
    If a site has been infected then blocking it before access is paramount as other yet unknown and undetectable infections may also reside on that site. In much the same way as SAV alerts in real time, having admins informed of infections in real time is critical.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  14. Additional Policies

    Improve features Additional Policy:
    + Add filters in additional policies (like Local Site List).
    + Possibility of sending a rule to a certain position in the order of policies.
    + Remove limit 150 Policies.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  15. Proxy - Allow website access without authentication

    We have certain applications which need access to the internet but are unable to authenticate with the Sophos web appliance. It would be good to be able to specify an additional policy for certain websites which would allow access for unauthenticated users such as applications that can't pass credentials. An alternative to this would be for the Sophos appliance to work with account details entered in applications proxy settings. Many mainstream applications such as windows update services will not authenticate with the Sophos web appliance even when specifying the proxy address and account to use.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  16. Email alerts for Advanced Threat Protection on the Sophos Web Appliance

    Sophos Web Appliance: Ability to configure email alerts when a host is detected by Advanced Threat Protection

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  17. Quota support in Full Web Control

    Currently the Full Web Control deployed via the endpoint does not support Quotas. The customer would like this functionality because all systems on his network use the full web control.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  18. Add optional fields to the user feedback submission form, such as a contact phone number or computer name.

    A customer considers this a very important enhancement as their previous web filter solution allowed the integration of a custom submission request into their ticketing system, allowing for automatic population with the pertinent details. This was proven to ease greatly request evaluations via their change tracking process.

    The UI could either allow adding custom fields to the user feedback submission page or be able to replace the page with a custom template. Example – would like users to be able to add contact phone, office/computer location, department, name, etc. along with the URL. This would allow customers to streamline administration…

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  19. Alerts: Specify SMTP Port Used by SWA for Email Alerts

    We have created a new port different than 25 for SMTP traffic to help keep that port secure and standard for a few systems that we have. This port number also currently
    requires some type of authentication to access this port. We did create a secondary port that allows anonymous SMTP traffic to pass through the Exchange server. Unfortunately there isn’t any current method of applying authentication to the Web Appliance or altering the SMTP port. Seems like this was just looked over as a feature since we can even change the port and authentication methods with other pieces of…

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  20. Increase the number of destinations on the top bandwidth report.

    The current number of destinations displayed is 5 per user. To increase the usefulness of this report increase the limit or allow the user to select the number of destinations to include in the report.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.