Secure Web Gateway

Suggest, discuss, and vote on new ideas for Sophos Web Gateway. Complete web protection everywhere.

Secure Web Gateway

Suggest, discuss, and vote on new ideas for Sophos Web Gateway. Complete web protection everywhere.

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. More detailed download reporting

    We've had a customer request the ability to drill down further in the download reporting in Reports > Policy & Content > Downloads as at current the actual downloads / users cannot be viewed, only the size of downloads for a specified period.

    2 votes
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • sso
    • facebook
    • google
      Password icon
      Signed in as (Sign out)

      We’ll send you updates on this idea

      0 comments  ·  Web Reporting  ·  Flag idea as inappropriate…  ·  Admin →
    • Web Appliance: Allow skype with the HTTPS Scanning on

      When HTTPS scanning is enabled, Skype fails to work because it is trying to send non-HTTP traffic over the SSL tunnel.

      It is essential to be able to scan https sites and also essential to be able to support messaging apps, in particular Skype and iMessage. For Skype – maybe even setting up a simple SOCKS proxy on the Web proxy might do the trick, we do not need to examine or track the contents of the Skype messages." case 3693911

      23 votes
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • sso
      • facebook
      • google
        Password icon
        Signed in as (Sign out)

        We’ll send you updates on this idea

        3 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
      • Include HTTPS transactions in the Site Visits By User report.

        When HTTPS scanning is not enabled, the web appliance has no ability to see what goes on in that tunnel once the HTTPS connection has been established. This means that we can see the initial connect but not what requests were made or the bytes associated with any further requests made inside that tunnel. For this reason, I understand a design decision was made not to include any HTTPS traffic in that report.

        Customer has requested that we provide the option to include this type of data in the Site Visits by User report even if the accuracy of the…

        2 votes
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • sso
        • facebook
        • google
          Password icon
          Signed in as (Sign out)

          We’ll send you updates on this idea

          0 comments  ·  Web Reporting  ·  Flag idea as inappropriate…  ·  Admin →
        • Option to remove old connected endpoints

          We've had multiple customers requesting the option to remove old endpoints from the connected endpoints list on the WSA.

          7 votes
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • sso
          • facebook
          • google
            Password icon
            Signed in as (Sign out)

            We’ll send you updates on this idea

            1 comment  ·  Web in Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
          • Include Sharepoint into the data leakage component of the web appliance

            The company regards security as
            it's upmost priority, holding major contracts with the MOD. As such the company
            needs to demonstrate good risk management, especially regarding the threat of
            data leakage. As more and more partners work in collaborative environments and
            require our employees to access these environments the company feels some level
            of control is required. Currently these environments are not recognized by the
            Sophos appliance as threats and consequently gives no access
            control.

            3 votes
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • sso
            • facebook
            • google
              Password icon
              Signed in as (Sign out)

              We’ll send you updates on this idea

              0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
            • Define custom filetypes

              A customer of ours has raised a request to be able to block custom filetypes, for example - defining ".nzb" files as an additional filetype to be blocked or warned against.

              1 vote
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • sso
              • facebook
              • google
                Password icon
                Signed in as (Sign out)

                We’ll send you updates on this idea

                0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
              • Display an 'Acceptable Use Policy' page without requiring login

                Our customer is currently using WebMarshal for their web filtering solution and will be moving to the Sophos Web Appliance. One of the key Information Governance requirements is that they currently have a landing page when a user launches IE which advises users of the acceptable usage policy for web browsing over their network. This landing page is only displayed once every 24 hours per user session.

                I believe there is no equivalent with the Sophos Web Appliance unless you use the 'Captive Portal' option which would prompt the user for authentication before they are allowed to Web browse.

                2 votes
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • sso
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)

                  We’ll send you updates on this idea

                  1 comment  ·  Web Policy (Appliance and Endpoint)  ·  Flag idea as inappropriate…  ·  Admin →
                • Consolidate update alerts for managed appliances

                  I’d like to put in a feature request wherein web appliances that are connected to a central management console only email out once with a list of appliances that have not updated rather than each and every box sending an email every night.
                  The current system is very loud and annoying to those who don’t subscribe to automatic updates and I think the same point can be made with just one email.

                  2 votes
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • sso
                  • facebook
                  • google
                    Password icon
                    Signed in as (Sign out)

                    We’ll send you updates on this idea

                    0 comments  ·  Central Management  ·  Flag idea as inappropriate…  ·  Admin →
                  • Admin can choose not to trust default trusted sites

                    Can we have a button which gives us an option to turn on/off the defaulted trusted sites set by sophos labs.

                    Reason being if a customer has setup a rule to say block all exe , if the site is default trusted by labs the user can download the exe. Some customers do not want any site trusted.

                    4 votes
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • sso
                    • facebook
                    • google
                      Password icon
                      Signed in as (Sign out)

                      We’ll send you updates on this idea

                      1 comment  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
                    • Categorization: Dynamic categorization for objectionable content

                      Dynamic categorization is required to allow blocking of sites that contain objectionable content but are not categorized as such.

                      For example, in some cases customers find that allowing Uncategorized sites exposes users to objectionable content, but blocking Uncategorized sites blocks sites they need to access.

                      There are also situations where objectionable content might appear on categorized sites, which can be particularly problematic for school environments.

                      17 votes
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • sso
                      • facebook
                      • google
                        Password icon
                        Signed in as (Sign out)

                        We’ll send you updates on this idea

                        0 comments  ·  URL Categorization  ·  Flag idea as inappropriate…  ·  Admin →
                      • "Allow user feedback" that is anonymous

                        The American Civil Liberties Union successfully filed suit against a school district for not allowing anonymous submission for changes to blocked web sites. I am requesting that under “Allow User Feedback” that the request come in anonymously even when Active Directory / eDirectory authentication is enabled.

                        What would you like this new feature to be/do? Allow anonymous submission for changes to blocked websites when “Allow User Feedback” is enabled and LDAP authentication is enabled.

                        How will this new feature address your business requirements? It will allow us to comply with the legal requirements of the United States and Washington State.

                        1 vote
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • sso
                        • facebook
                        • google
                          Password icon
                          Signed in as (Sign out)

                          We’ll send you updates on this idea

                          0 comments  ·  Web Policy (Appliance and Endpoint)  ·  Flag idea as inappropriate…  ·  Admin →
                        • Create a master group of PRODUCTIVITY LOSS that is comprised of sub groups of all the categories, so that reports can be run

                          Site have a WEB Appliance (hardware WS5000) and need to:
                          Create a master group of PRODUCTIVITY LOSS that is comprised of sub groups of all the categories, so that reports can be run
                          (ie How long has Joe Bloggs been on non work related sites?)

                          2 votes
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • sso
                          • facebook
                          • google
                            Password icon
                            Signed in as (Sign out)

                            We’ll send you updates on this idea

                            1 comment  ·  Web Reporting  ·  Flag idea as inappropriate…  ·  Admin →
                          • Reporting: Report on a time band across multiple days

                            For example, be able to run a report for bandwidth utilization that covers only the hours 8:00 AM to 4:00 PM.

                            2 votes
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • sso
                            • facebook
                            • google
                              Password icon
                              Signed in as (Sign out)

                              We’ll send you updates on this idea

                              0 comments  ·  Web Reporting  ·  Flag idea as inappropriate…  ·  Admin →
                            • Reporting: Users with top blocked request

                              I would like to run a report that will list all users by blocked request. This will allow administrators to see users who are attempting to bypass the filtering, and or have a compromised machine.

                              New custom report >> Available Reports: Users >> Today >> All Departments >> With the Action "Blocked" and then be able to sort by Requests.

                              3 votes
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • sso
                              • facebook
                              • google
                                Password icon
                                Signed in as (Sign out)

                                We’ll send you updates on this idea

                                0 comments  ·  Web Reporting  ·  Flag idea as inappropriate…  ·  Admin →
                              • Reporting: Reports by Tag, showing results of search by Tag on Local Site List.

                                Creating Reports by Tag, showing the same results of search by Tag, using "Show filters" option, on Local Site List, but with the original Category and Risk Class shown for each site found.

                                Customer's business needs are:
                                - when the employee who checks Appliance Reports for Italian law compliance went to Cariparma, when he saw that a huge numbers of sites could be added to Local Site List, assigning tags, recategorizing them and overriding risk class, he told them he needs the results of searching Local Site List by tag, thanks to 'Show filters' option, as a Report and with…

                                3 votes
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • sso
                                • facebook
                                • google
                                  Password icon
                                  Signed in as (Sign out)

                                  We’ll send you updates on this idea

                                  0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
                                • Customized reporting option to tie UserID with logged IP

                                  Customized reporting option to tie UserID with logged IP information when performing a Search By User or the ability to create enhanced custom reports by date and time with any fields within the database for correlation of usable data for various events.

                                  2 votes
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • sso
                                  • facebook
                                  • google
                                    Password icon
                                    Signed in as (Sign out)

                                    We’ll send you updates on this idea

                                    0 comments  ·  Web Reporting  ·  Flag idea as inappropriate…  ·  Admin →
                                  • HTML 5 support

                                    The ability of the Web Appliance to identify itself to a web site as a specific level of browser dependant on the requesting client connection. As a minimum, the ability to identify itself as a HTML5 compliant browser

                                    1 vote
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • sso
                                    • facebook
                                    • google
                                      Password icon
                                      Signed in as (Sign out)

                                      We’ll send you updates on this idea

                                      Awaiting reply from Submitter  ·  0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                                    • WCCP to listen on port 2048 to work with Fortinet Firewall

                                      Customer would like to have the SWA listen on port 2048 so it would work with Fortinet firewall. This is to establish WCCP GRE Tunnel with the Fortigate Firewall.

                                      3 votes
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • sso
                                      • facebook
                                      • google
                                        Password icon
                                        Signed in as (Sign out)

                                        We’ll send you updates on this idea

                                        0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
                                      • Ability to customize the "Submit request" page

                                        When going to a blocked page, if "Allow user feedback" is enabled in the policy, users are able to "Submit request" to the administrator.

                                        The "Submit request" page cannot be customized; it would be nice if you could do that.

                                        2 votes
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • sso
                                        • facebook
                                        • google
                                          Password icon
                                          Signed in as (Sign out)

                                          We’ll send you updates on this idea

                                          1 comment  ·  Flag idea as inappropriate…  ·  Admin →
                                        • Enable Data Loss controls by user/group

                                          At present, Data Loss controls (Webmail, Blogs & Forums posting) are globally configured for all users. Make them configurable by policy.

                                          1 vote
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • sso
                                          • facebook
                                          • google
                                            Password icon
                                            Signed in as (Sign out)

                                            We’ll send you updates on this idea

                                            0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
                                          • Don't see your idea?

                                          Feedback and Knowledge Base

                                          icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-lightbulbCreated with Sketch.