Secure Web Gateway
Suggest, discuss, and vote on new ideas for Sophos Web Gateway. Complete web protection everywhere.
-
SWA: Send email alert for infected hosts
Customer would like an email alert to be sent, as soon as the SWA detects an infected host, as displayed on the dashboard.
This would assure a faster investigation for machines that may be infected.2 votes -
goto meeting
Customer would like to request category specifically for remote such as GotoMeeting or similar application
2 votes -
On reports show the duration the user visited the URL
On reports show the duration the user visited the URL
Name of the Company: The Automotive Research Association of India
3 votes -
Scan large file over 800 MB
Company and Contact Information
Company: Parmalat Australia
Contact: Douglas Ellis07 38400 264
Sophos Partner (if applicable): Global agreement
Sophos Product Information
Sophos Product: Sophos Web Appliance
Version in Production:4.2.1.3
Feature Request Summary
How will this new feature address your business requirements?: We are getting large documents and pdf files sometimes into multiple gigabytes in zip files, as well as applications. Which are critical to our business. Having the ability to scan files over 800mb
or a appliance that can be used to offload these scans would allow our users to get these files without IT having to connect to an…3 votes -
SWA: Add support as a web application Skype Web (https://web.skype.com)
Add support to Allow Skype Web (https://web.skype.com) in the "Web Applications" instead of allowing the whole category: chat.
4 votes -
Web Appliance: Support Intermediate Certificates for Certificate Authority
Customer would like to use a custom Certificate as Certificate Authority.
According to an internal KBA "Customer Upload of Signing Certificate" the CA Certificate needs to be a top-level Root CA.
The customers CA Certificate is not a top-level Root CA, so he needs to be able to also import an Intermediate Certificate, and therefor requests this feature5 votes -
Override button for blocked sites
Reference community post :
https://community.sophos.com/products/web-appliance/f/5/t/79013User would like to have an override button on the blocked web pages, where administrative users can simply enter their username, password and a time to temporarily override a blocked page.
4 votes -
Change the behavior of querying DNS server, which are serialize at the moment
Customer figures that the SWA serializes DNS-queries and will only answer the 2nd when the 1st was answered or runs into a timeout.
The other day a dDOS was run agains the teamviewer nameservers, which then completely blocked the SWA.URID[13516]: T=13516 7592 3 - [warn] aborting request after 44.039s with no SXL response
URID[13516]: T=13516 7594 3 - [warn] aborting request after 44.038s with no SXL response
URID[13516]: T=13516 7600 3 - [warn] aborting request after 44.038s with no SXL response
/USR/SBIN/CRON[20335]: (root) CMD (TZ=GMT /usr/sbin/logrotate /etc/logrotate.conf)
URID[13516]: T=13516 ------ 2 - Warning: LATE TIMEOUT: dns context 0 should…3 votes -
Possibility to limit data of exported syslog
Customer would like to be able to limit the data of the exported syslog, e.g. to have an option to only provide virus founds or blocked requests, but not all HTTP requests.
These options should be available in the admin web interface.Sophtrac case [#6276455]
1 vote -
On reports shows what device a user is accessing a site from
ompany: Heart of England NHS Trust
Contact: Stephen Curwood
Sophos Partner (if applicable): BMS
Sophos Product Information
Sophos Product: Sophos Web Management2 Appliance
Version in Production: 4.2.1.1
Feature Request Summary
How will this new feature address your business requirements?:
How would you rate the importance of this feature?; 1 = Critical, 5 = Nice-to-have: 2
4 votes -
Web Appliance: Ability to disable "certificate error " error message in the blockpage
A customer don´t wants the "certificate error " error message in e.g. the blockpage to be displayed, as this only confuses users.
As soon as a user requests a blocked HTTPS website, besides the Reason and the Site, the blockpage shows:
If your browser displayed a certificate error before displaying this page, you may need to install the web protection certificate authority. Click here to download it.
This message is shown, no matter if HTTPS scanning and/or certificate validation is active.
It shows even if the appliances CA already is installed on the browser.
In that case when clicking on…2 votes -
ability to edit templates from GUI
HTTPS Web Filter web message page for an Untrusted Website is providing our end-users with a hyperlink to add their own exception. Customer wants to be able to edit template to remove or alter the exception link
case ref 59761261 vote -
Times at which websites were being accessed
Ability to not only view sites visited & the amount of time spent, but also the times at which the sites were being accessed
2 votes -
Per site global bandwidth usage
Reference community post :
https://community.sophos.com/products/web-appliance/f/5/t/76569Client would like to be able to specify a single URL/website and look at the TOTAL bandwidth/volume/bytes consumed for everyone globally going through the web appliance.
There is a fairly similar log but they cannot specify a single URL and can only go by top allowed/block websites.
3 votes -
automatically download file after scanning
it will be nice if file can be automatically downloaded after scanning without click on the "Click here to retrieve file".
Another to raise this request is a file scanned by Sandstorm would be downloaded automatically.15 votes -
Captive Portal after SSO authentication
Customer has various generic user AD accounts. After the client has authenticated with the WSA via SSO, they would like the option to present a captive portal for accounts which belong to certain AD security groups - so that the individual user can log in instead of using the generic user account. It is deployed with Static IPs for Captive Portal at present
2 votes -
Custom Block Pages: Add a "local time" variable
The customer asked for a variable that contains the local time instead of GMT, e.g. %%DATETIME%%, the only one available at the moment is this - %%DATETIME_GMT%% which cannot be changed from GMT.
4 votes -
Enable Kerberos Support for Windows Clients
Currently all authentication between Windows machines and the Sophos Web Appliance occurs using NTLM, we would like to move to using only Kerberos.
3 votes -
Option for letting clients disable the gateway
Its sometimes very bad when users cant visit certain sites because they dont allow proxies/vpn´s
7 votes -
more refine option for syslog and ftp backup for transaction log
would be nice to have a option to export the transaction logs only when there is a issue . As regular backup is taking lots of space in syslog server.
1 vote
- Don't see your idea?