Secure Web Gateway
Suggest, discuss, and vote on new ideas for Sophos Web Gateway. Complete web protection everywhere.
-
Admin can choose not to trust default trusted sites
Can we have a button which gives us an option to turn on/off the defaulted trusted sites set by sophos labs.
Reason being if a customer has setup a rule to say block all exe , if the site is default trusted by labs the user can download the exe. Some customers do not want any site trusted.
5 votes -
Categorization: Dynamic categorization for objectionable content
Dynamic categorization is required to allow blocking of sites that contain objectionable content but are not categorized as such.
For example, in some cases customers find that allowing Uncategorized sites exposes users to objectionable content, but blocking Uncategorized sites blocks sites they need to access.
There are also situations where objectionable content might appear on categorized sites, which can be particularly problematic for school environments.
18 votesWe are considering Dynamic Categorization as a feature for future releases.
-
"Allow user feedback" that is anonymous
The American Civil Liberties Union successfully filed suit against a school district for not allowing anonymous submission for changes to blocked web sites. I am requesting that under “Allow User Feedback” that the request come in anonymously even when Active Directory / eDirectory authentication is enabled.
What would you like this new feature to be/do? Allow anonymous submission for changes to blocked websites when “Allow User Feedback” is enabled and LDAP authentication is enabled.
How will this new feature address your business requirements? It will allow us to comply with the legal requirements of the United States and Washington State.
…
1 vote -
Create a master group of PRODUCTIVITY LOSS that is comprised of sub groups of all the categories, so that reports can be run
Site have a WEB Appliance (hardware WS5000) and need to:
Create a master group of PRODUCTIVITY LOSS that is comprised of sub groups of all the categories, so that reports can be run
(ie How long has Joe Bloggs been on non work related sites?)2 votes -
Reporting: Report on a time band across multiple days
For example, be able to run a report for bandwidth utilization that covers only the hours 8:00 AM to 4:00 PM.
2 votes -
Reporting: Users with top blocked request
I would like to run a report that will list all users by blocked request. This will allow administrators to see users who are attempting to bypass the filtering, and or have a compromised machine.
New custom report >> Available Reports: Users >> Today >> All Departments >> With the Action "Blocked" and then be able to sort by Requests.
3 votes -
Reporting: Reports by Tag, showing results of search by Tag on Local Site List.
Creating Reports by Tag, showing the same results of search by Tag, using "Show filters" option, on Local Site List, but with the original Category and Risk Class shown for each site found.
Customer's business needs are:
- when the employee who checks Appliance Reports for Italian law compliance went to Cariparma, when he saw that a huge numbers of sites could be added to Local Site List, assigning tags, recategorizing them and overriding risk class, he told them he needs the results of searching Local Site List by tag, thanks to 'Show filters' option, as a Report and with…3 votes -
Customized reporting option to tie UserID with logged IP
Customized reporting option to tie UserID with logged IP information when performing a Search By User or the ability to create enhanced custom reports by date and time with any fields within the database for correlation of usable data for various events.
2 votes -
HTML 5 support
The ability of the Web Appliance to identify itself to a web site as a specific level of browser dependant on the requesting client connection. As a minimum, the ability to identify itself as a HTML5 compliant browser
1 vote -
WCCP to listen on port 2048 to work with Fortinet Firewall
Customer would like to have the SWA listen on port 2048 so it would work with Fortinet firewall. This is to establish WCCP GRE Tunnel with the Fortigate Firewall.
3 votes -
Ability to customize the "Submit request" page
When going to a blocked page, if "Allow user feedback" is enabled in the policy, users are able to "Submit request" to the administrator.
The "Submit request" page cannot be customized; it would be nice if you could do that.
2 votes -
Enable Data Loss controls by user/group
At present, Data Loss controls (Webmail, Blogs & Forums posting) are globally configured for all users. Make them configurable by policy.
1 vote -
Send TCP-KeepAlive Packets
When Scanning files the Appliance should send TCP-Keep-Alive packets in order for clients to see that the connection did not go stale.
Customer would like to have a choice of either the patience page, tcp-keep-alive, or nothing. Selection could be made on the Configuration->Notification Page Options Page9 votes -
Change user request-email address
When a user requests a page or want to have a category changed, the email address where the request is going to should be configurable (instead of going to the alert recipients in general)
It also could be usefull for other customers using role based management to send user request mails e.g. to a helpdesk admin, and not to the appliance admin.8 votes -
Reporting: Report based on primary site visited
In the web appliance reporting, for non technical users, the reporting is very misleading. When a user goes to a web site such as 'www.yahoo.com', not only does yahoo.com appear in the reports, but if there is a Facebook "like" button that is retrieved from facebook.com, facebook.com will also appear on the report. I would like the report to show only what was clicked on (e.g. a link or bookmark) or typed in the address bar.
In situations where the report may be used for HR or legal action, the web appliance reports make it difficult to use…
3 votes -
Add hyperlink from PUA User Submissions to Download Options
Add a visible hyperlink from PUA User Submissions section to Configuration -> Download Options. It is difficult for those new to the web appliance to know where already authorized PUAs are located. Especially since they disappear from User Submissions after a decision is made.
1 vote -
IPv6 Support
We've had multiple customers requesting updates on when the web appliance will include IPv6 Support.
5 votes -
Advanced settings for "Search Term Alerts"
Currently we're seeing a lot of customers that experience multiple emails when using the "Search Term Alerts" feature on the web appliance due to instant search which is enabled by default on sites such as google. Ie, customers are receiving an email for each letter typed into the search bar.
1 voteIt is generally not possible to distinguish between interim search terms and the final search – not least because the interim terms can return results. The best we could do here is try to merge together alert emails over a short time frame to decrease the level of traffic.
-
Reporting: Exclude some substrings matches from Search Terms
In the Reports --> "Search Terms", selectively exclude some matches (while still including substring matches). As an example, keep "sex" as a search term, but exclude "Sussex" (while still keeping "Include substring matches").
1 vote -
User/device throttling based on Username/IP/MAC address/Hostname
eature Request Summary – user/device throttling / prioritization allowing admins to set up polices on a per computer (hostname, MAC or IP) AD user/group basis to restrict download speeds to conserve bandwidth. Also be able to prioritize traffic like windows updates lower during high traffic/production times
How will this new feature address your business requirements? – More users are using MORE bandwidth. Example: If there’s a class researching a topic on youtube and a study hall playing games, I would like to easily place a throttle on the gamers that gives the youtube users more priority. Example 2: user brings…
4 votes
- Don't see your idea?