Secure Web Gateway

Suggest, discuss, and vote on new ideas for Sophos Web Gateway. Complete web protection everywhere.

Secure Web Gateway

Suggest, discuss, and vote on new ideas for Sophos Web Gateway. Complete web protection everywhere.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. ssmtp

    I would like the appliance to send emails securely. That is, I could use ssmtp, tls, starttls, for sending alerts and reports.

    Currently you can only use SMTP.

    regards

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  2. Whitelisting only seems to work for IP address and not DNS names

    We recently tried to whitelist a VPN connection in Secure Web Gateway, using the DNS name did not whitelist the VPN, we had to put the actual IP address in to the whitelist to get it to work.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  3. When a URL is blocked, the log should have more detail

    When a URL is Blocked, the log should have more detail as to why the URL was blocked. We should be able to see these details so we can troubleshoot and fix the issue instead of calling support.

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  4. time should include one thousandth of a second

    Time should include one thousandth of a second when searching user web history. When endpoint security products detect malicious web activity it would be helpful to have the Web Gateway display to the thousandth of a second in the Date/Time column so we can match the time with the event that occurred on endpoint security. That way we can block the URL by adding it to the local site list. I know the Web Gateway can do this because I see this detail in my SIEM when the Web Gateway sends events to the SIEM.
    Thank you!

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  5. Block Newly Registered Websites

    The ability to block newly registered websites would be great. So many new sites are created with malicious intent. Say 30 days or 60 days. The Sophos Firewall has the ability to do this, so should the Web Gateway.
    Thanks!

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  6. sophos email appliance quarantine summary to specific users only

    We have customer here requesting to have option to enable quarantine summary to specific users only

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  7. Show correct error page when Uncategorized category is blocked

    When a user attempts to visit an invalid URL (does not resolve in DNS) and the Uncategorized category is set to Block on the WS, the user will incorrectly be shown a “Blocked due to category” error page. While the URL is likely ‘Uncategorized’, it would be more correct to show the user a splash screen for “Server Error Page” that explains “The web address you entered could not be found.” The “Blocked due to category” error page allows the user to submit a request for access to a URL that doesn’t exist, creates additional IT work orders, and wastes…

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  8. Erase Proxy log specific user

    If possible, delete a specific user's proxy logs without deleting the logs of the others

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  9. Web Appliance Configuration

    It would be very useful to have a tool to download and view the configuration fo the web appllainces, mainly the policy configuration.

    Right now it seems the only way to get the policy configuration is to extract the policy.xml file from a backup but it's nearly unreadable

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  10. Separate Web Gateway Role from Help Desk read

    I'd suggest removing the Web Gateway logs readability and search from the Help Desk and Read-only Roles. I need help desk folks to be able to troubleshoot the end-point by disabling the tamper protection, call into support, etc. What I don't want is the ability for all the help desk personnel to see and search the browsing history of any user, especially VIPs. Is there already a way to do this?

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Central Management  ·  Flag idea as inappropriate…  ·  Admin →
  11. Web

    Audit/System configuration log in order to determine when changes are made by a user. The log should be able to identify time of access to the web appliance, who accessed it, and what changes to the appliance, policies, and other configurations were made by that user. The report/log should also would be useful if the Administrator could export the log (i.e PDF, CSV, etc)

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  12. Reports which file type is blocked.

    Currently if a user has a problem with a certain site because a file type is blocked it is not displayed in the reports.

    So have to investigate this in the syslog if you have set it up or call Sophos support which takes too much time.

    Can the reason for the file type block be added in the reports?

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  13. Email Applicance - Possibility to remove Disposition-Notification-To and Return-Receipt-To headers

    Product "Email Appliance" is not available so posting it hear instead.
    Sometimes we receive e-mails which have the headers "Disposition-Notification-To: " and "Return-Receipt-To: " set.
    I would like to remove those 2 headers (only for certain recipients) and sent the mail through.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  14. To upgrade the Sophos Virtual Web Appliance hardware version to VMX10

    Hi Team,

    There are various problems in terms of performance of Sophos Virtual Web Appliance hardware version vmx4.

    Its always better to be on latest version for better efficiency and performance.

    Our environment recommended to upgrade the Sophos Web Appliance hardware version from vmx4 to VMX10 but Unfortunately the vmx10 officially you have not tested the hardware version 10 with the Sophos Web Appliance.

    and its not recommended as of now. could you please test the vmx10 version and make it officially supported

    Regards
    Tajudeen

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  15. Not able to access money control

    sir,
    I am not able to connect with some of the sites like moneycontrol.com, karvyonline.com. these sites are only for stock trading nothing else. And I am investor in share market and I want to watch those sites regularly as it is my field of studying and also I am having financial interests in them. kindly remove the blockage to access them, so could I use them.
    thanking you

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  URL Categorization  ·  Flag idea as inappropriate…  ·  Admin →
  16. Deactivate encrypted file blocking by URL

    Hi guys,

    at the moment it is only possible to block ALL encrypted and unscannable files under Filtering Options -> Misc

    It would be great to get an option in the Exceptions to deactivate the blocking for encrypted files by URL.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  17. Implement some basic security features.

    The standard Web Gateway install exhibits the following behaviour that really should be fixed.

    Revoked leaf certificate - treats as trusted.
    Bad HPKP pin - treats as trusted.
    SHA-1 signed certificate - treats as trusted.
    Invalid SCT - treats as trusted.

    I mean come on, not checking for revoked certificates is pathetic in what's meant to be a security product.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  18. download size

    Set the maximum Downlaod-Size of File in Rules.
    We want to set a Rule for Users or IPs that control the max. Size of a Download-File. e. g. is not allowed to Download a File with over 25MB.
    In SiteKiosk we can set this Option, but when the Sophos Web Appliance is used as Proxy, the Download starts and get the hole File (e. g. 100MB) and then SiteKiosk can say: No, Download is to large ...

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  19. Generic block option

    Generic Block for local site list.

    This came up when trying to block a website for all our sites except for one.
    Additional policy was created to allow the site, but to block other sites we changed the Category to something that was blocked. This does not indicate the correct reason.

    Unable to use global block tag as it has higher precedence.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  20. Have the ability to modify the Syslog output format

    The ability to modify the syslog output would be a great feature so that we can tailor that output to a format that works best with our SIEM.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.