Hello Team,

We have customer here requesting to have option on web interface of web appliance to retrieve traffic logs from the shell or back end of web appliance. For your assistance please
Thank You.

Today, Sophos Web Appliance records HTTP URLs, caller (using LDAP) and timestamp.

I'd like to request that it should also record HTTP headers.

We are existing clients who'd like to audit HTTP calls and we need the headers to be included.

On the web appliance, it would be nice if you could mass select your scheduled reports and "run now" or "run again". We hit a snag where the mail server wasn't available during the 1st of the month reporting and previewing, then saving, then manually emailing...

A, added bonus would be to add a change of criteria like a new date range.

When Sophos email an alert to the Sophos admins have Sophos automatically create a JIRA ticket with the information from the Sophos alert then the service desk will get that ticket immediately and be able to investigate.

We use AD Sync over multiple domains. Currently we can only see the AD username but cannot see which domain this belongs to. This makes it difficult to report on individual domains, and impossible to tell which user is which when the same name is used on more than 1 domain.
Ideally the username would be shown as: domain\username

The "search" log only goes as far back as 30 days. There should be an option to allow admins to set it for more than 30 days (60, 90, 120, etc.)

I'd like the ability to drill down into the bar graphs to see user name and messages which are being reported on.

I'd like the ability to view connection attempts and bounced email log. There current log does not show me this information.

I want the ablility to configure my policy to hold attachments, from users.
An administrator could then go in an release the held attachment.

I personally would like to hold all password protected files including zip files since Mail Gateway can not scan them and allows them to go directly to user. If an email contains the file's password a user could then open then scanned files.

Central Mail Gateway is too complicate to configure.
I suggest that the configuration will be made from a full wizard, that means that all configuration will be made by a wizard that after the the wizard will be finished all the configuration in office 365 will be made includes connectors of inbound and outbound.
The only thing that will remain is that the customer / integrator will need to change the MX records and even that will be checked that it has made correctly if not the wizard will not complete.

Hello Team,

We have customer here requesting to revert back the feature under email appliance to allow wildcard entries to group editor. For your assistance please.

The feature is available in Web Appliance but not in Management Appliance.

Customer is not able to use additional port with load-balancing feature since the virtual IP is hosted by SMA.

Currently the SMTP settings on the Sophos email appliance do not support the Microsoft limits. Example: The Maximum number of recipients on the Sophos email appliance only supports 1000 recipients while Microsoft supports 10,000. Can we upgrade the Sophos Email Appliance to support these settings: https://technet.microsoft.com/en-us/library/exchange-online-limits.aspx

Without including all quarantined emails in the digest, how would an end user know if they had a message trapped by the appliance that may be legitimate?

Sir,
2FA authentication require in cyberoam firewall. your product don,t have 2fa.
kindly add this feature in this

Email appliance only shows content of the message while it is in the queue, once delivered and appears in the mail logs, no way to see detail in GUI. It is very useful and more secure to allow admins to view the content of a message in the mail log. This would enormously helpful in assisting users, so that they didn't have to forward the suspect email back to help desk, exposing the threat further. Users simply informed that they received an email they were suspicious of, and who it was from.

Currently it's not possible to add a route to a single IP address (CIDR /32), but the smallest destination CIDR address is a /31. In some circumstances it's mandatory to use a route to a single IP address.

When a warning page, block page, or quota page is presented for a background site such as a content delivery server or image content the browser does not display this page. If possible customer would ideally be able to see this quota/proceed page within the page rather than the website loading unformatted and with no images.

Enable feature for soft restart while updating/adding new WAF policies and changes occured in existing WAF policies. Since compete WAF restart may annoying the existing service availability to the customers. number of Financial transaction services being run through reverse proxy which could lead in trouble when you edit or delete any existing WAF rule or services.