Secure Web Gateway
Suggest, discuss, and vote on new ideas for Sophos Web Gateway. Complete web protection everywhere.
-
Report based on local site list tag
It would be nice to be able to create a report on users clicked and no. of hits based on a local site list tags. Currently, you can only create reports based on categories but you are unable to create custom categories. The tags was created because of this but then reporting on them isn't available. Some customers wants to create their own "non-business" related sites and monitor + report on them so this feature would definitely be useful.
2 votes -
Adobe cloud
Please add Adobe Cloud to the web application controls so that we can allow certain levels of access to adobe cloud without allowing uploading.. Similar to what has been done with Google Drive and One Drive.
2 votes -
Disable deprecated SSL/TLS Versions
When using SSL-Inspection, it should be possible to deaktivate outdated TLS-versions like TLSv1.0 / 1.1.
It is recommended to disable SSLv3/ TLSv1.0 / 1.1 in the browser settings. This setting is useless, however, as the SWA always uses SSLv1.2 in the direction of the client.
So it can happen that a website with TLSv1.0 is requested, which is transferred to the client, on which TLSv1.0 is deactivated, with TLSv1.2.
That's a security problem.3 votes -
Display HTML content in encrypted email
Would be very helpful if you were able to display HTML content as part of the encrypted email and not just basic text. Same applies here to the reformatting of the email signature.
7 votes -
"Encrypt" button turned ON by default
It should be possible to enable the "encrypt" button by default, so that it is not necessary to turn it on for every single email that one need to send encrypted (which is the majority).
7 votes -
Request to have the helpdesk role in web appliance to manually synchronize the AD
Hello Team,
We have the partner here requesting to have the helpdesk role in web appliance to manually synchronize the AD. This will allow the customer to no need to call the partner just to request to manually synchronize the AD if there are changes done on AD. For your assistance please. Thank You.
3 votes -
Request to have option to change the interval for the default synch time of AD to Web appliance
Hello Team,
We have customer here requesting to to have option to change the interval for the default synch time of AD to Web appliance. Customer advise that they need to have shortened AD synch interval as when they do changes on AD, it takes time for the synchronization to take effect. Partner is aware that he can do the manual synchronization but he said that customer needs to contact him just to do the manual synchronization. For your assistance please. Thank You
2 votes -
Sophos Email Gateway Encryption Enhancement
Email Gateway Encryption needs some enhancements.
1. Option to disable multiple languages when users receive encrypted emails.
2. Sophos uses Echoworx for encryption but doesn't utilize the web portal. Giving the ability to use the web portal for recipients to send back a message encrypted would be great and it will be secure.2 votes -
Ability to highlight banner background and text colours
It would be useful to highlight banners with a choice of colours for background and text to catch a users attention.
2 votes -
Record HTTP headers
Today, Sophos Web Appliance records HTTP URLs, caller (using LDAP) and timestamp.
I'd like to request that it should also record HTTP headers.
We are existing clients who'd like to audit HTTP calls and we need the headers to be included.
2 votes -
More granular search parameters required for Recent Activity Search
When conducting a Recent Activity Search By User it would be more than helpful to display the IP address of the device that was being used by the user at the time of URL access. We have had a number of occasions where Indicators of Compromised servers have been flagged to us and we need to trace the users and devices that have attempted to access these sites however this is not possible as the search parameters and detail given is not granular enough. The IP addresses are shown when you use a By Suspicious Activity search so the information…
6 votes -
I suggest that the Sophos Email Appliance be able to support the Microsoft limits for email.
Currently the SMTP settings on the Sophos email appliance do not support the Microsoft limits. Example: The Maximum number of recipients on the Sophos email appliance only supports 1000 recipients while Microsoft supports 10,000. Can we upgrade the Sophos Email Appliance to support these settings: https://technet.microsoft.com/en-us/library/exchange-online-limits.aspx
3 votes -
All emails that are quarantined should be included in quarantine digests. This includes but not limited to DKIM verification failures under
Without including all quarantined emails in the digest, how would an end user know if they had a message trapped by the appliance that may be legitimate?
3 votes -
Allow single host route CIDR /32
Currently it's not possible to add a route to a single IP address (CIDR /32), but the smallest destination CIDR address is a /31. In some circumstances it's mandatory to use a route to a single IP address.
4 votes -
Enable feature for soft restart while updating/adding new WAF policies and changes occured in existing WAF policies.
Enable feature for soft restart while updating/adding new WAF policies and changes occured in existing WAF policies. Since compete WAF restart may annoying the existing service availability to the customers. number of Financial transaction services being run through reverse proxy which could lead in trouble when you edit or delete any existing WAF rule or services.
2 votes -
Block custom file extentions
I would like to see the ability to block custom file extensions and not just the predefined ones.
9 votes -
ssmtp
I would like the appliance to send emails securely. That is, I could use ssmtp, tls, starttls, for sending alerts and reports.
Currently you can only use SMTP.
regards
1 vote -
Show correct error page when Uncategorized category is blocked
When a user attempts to visit an invalid URL (does not resolve in DNS) and the Uncategorized category is set to Block on the WS, the user will incorrectly be shown a “Blocked due to category” error page. While the URL is likely ‘Uncategorized’, it would be more correct to show the user a splash screen for “Server Error Page” that explains “The web address you entered could not be found.” The “Blocked due to category” error page allows the user to submit a request for access to a URL that doesn’t exist, creates additional IT work orders, and wastes…
3 votes -
Reports which file type is blocked.
Currently if a user has a problem with a certain site because a file type is blocked it is not displayed in the reports.
So have to investigate this in the syslog if you have set it up or call Sophos support which takes too much time.
Can the reason for the file type block be added in the reports?
5 votes -
Email Applicance - Possibility to remove Disposition-Notification-To and Return-Receipt-To headers
Product "Email Appliance" is not available so posting it hear instead.
Sometimes we receive e-mails which have the headers "Disposition-Notification-To: " and "Return-Receipt-To: " set.
I would like to remove those 2 headers (only for certain recipients) and sent the mail through.2 votes
- Don't see your idea?