Secure Web Gateway
Suggest, discuss, and vote on new ideas for Sophos Web Gateway. Complete web protection everywhere.
-
Allowing additional listening ports to be added in Management Appliance
The feature is available in Web Appliance but not in Management Appliance.
Customer is not able to use additional port with load-balancing feature since the virtual IP is hosted by SMA.
2 votes -
I suggest that the Sophos Email Appliance be able to support the Microsoft limits for email.
Currently the SMTP settings on the Sophos email appliance do not support the Microsoft limits. Example: The Maximum number of recipients on the Sophos email appliance only supports 1000 recipients while Microsoft supports 10,000. Can we upgrade the Sophos Email Appliance to support these settings: https://technet.microsoft.com/en-us/library/exchange-online-limits.aspx
3 votes -
All emails that are quarantined should be included in quarantine digests. This includes but not limited to DKIM verification failures under
Without including all quarantined emails in the digest, how would an end user know if they had a message trapped by the appliance that may be legitimate?
4 votes -
sir, 2FA authentication require in cyberoam firewall. your product don,t have 2fa
Sir,
2FA authentication require in cyberoam firewall. your product don,t have 2fa.
kindly add this feature in this2 votes -
Only shows Content of the message while it is in the queue, once delivered and appears in the mail logs, no way to see detail in GUI.
Email appliance only shows content of the message while it is in the queue, once delivered and appears in the mail logs, no way to see detail in GUI. It is very useful and more secure to allow admins to view the content of a message in the mail log. This would enormously helpful in assisting users, so that they didn't have to forward the suspect email back to help desk, exposing the threat further. Users simply informed that they received an email they were suspicious of, and who it was from.
3 votes -
Allow single host route CIDR /32
Currently it's not possible to add a route to a single IP address (CIDR /32), but the smallest destination CIDR address is a /31. In some circumstances it's mandatory to use a route to a single IP address.
4 votes -
Allow pop-ups/in-screen pages to be presented with warn/quota/proceed
When a warning page, block page, or quota page is presented for a background site such as a content delivery server or image content the browser does not display this page. If possible customer would ideally be able to see this quota/proceed page within the page rather than the website loading unformatted and with no images.
3 votes -
Enable feature for soft restart while updating/adding new WAF policies and changes occured in existing WAF policies.
Enable feature for soft restart while updating/adding new WAF policies and changes occured in existing WAF policies. Since compete WAF restart may annoying the existing service availability to the customers. number of Financial transaction services being run through reverse proxy which could lead in trouble when you edit or delete any existing WAF rule or services.
2 votes -
more granular bandwith reporting per Domain and Subdomain
Client asked for an option in reporting, where he can see a more detailed bandwidth usage based on URLs and if applicable subdomains to check the total bandwidth/volume/bytes/hits consumed for everyone globally going through the web appliance.
At this point, bandwidth for domain xyc.com already can be checked, but cannot differenciate the bandwidth usage for (examples) abc.xyz.com, bca.xyz.com and cba.xyz.com
Thanks for considering!
3 votes -
Automatic generation of reports via backend
Customer is requesting for Automatic generation of reports via backend as manual generation per user/site iis tedious given the number of our internet users
2 votes -
Block custom file extentions
I would like to see the ability to block custom file extensions and not just the predefined ones.
9 votes -
ssmtp
I would like the appliance to send emails securely. That is, I could use ssmtp, tls, starttls, for sending alerts and reports.
Currently you can only use SMTP.
regards
2 votes -
Whitelisting only seems to work for IP address and not DNS names
We recently tried to whitelist a VPN connection in Secure Web Gateway, using the DNS name did not whitelist the VPN, we had to put the actual IP address in to the whitelist to get it to work.
3 votes -
When a URL is blocked, the log should have more detail
When a URL is Blocked, the log should have more detail as to why the URL was blocked. We should be able to see these details so we can troubleshoot and fix the issue instead of calling support.
7 votes -
time should include one thousandth of a second
Time should include one thousandth of a second when searching user web history. When endpoint security products detect malicious web activity it would be helpful to have the Web Gateway display to the thousandth of a second in the Date/Time column so we can match the time with the event that occurred on endpoint security. That way we can block the URL by adding it to the local site list. I know the Web Gateway can do this because I see this detail in my SIEM when the Web Gateway sends events to the SIEM.
Thank you!2 votes -
Block Newly Registered Websites
The ability to block newly registered websites would be great. So many new sites are created with malicious intent. Say 30 days or 60 days. The Sophos Firewall has the ability to do this, so should the Web Gateway.
Thanks!1 vote -
sophos email appliance quarantine summary to specific users only
We have customer here requesting to have option to enable quarantine summary to specific users only
1 vote -
Show correct error page when Uncategorized category is blocked
When a user attempts to visit an invalid URL (does not resolve in DNS) and the Uncategorized category is set to Block on the WS, the user will incorrectly be shown a “Blocked due to category” error page. While the URL is likely ‘Uncategorized’, it would be more correct to show the user a splash screen for “Server Error Page” that explains “The web address you entered could not be found.” The “Blocked due to category” error page allows the user to submit a request for access to a URL that doesn’t exist, creates additional IT work orders, and wastes…
4 votes -
Erase Proxy log specific user
If possible, delete a specific user's proxy logs without deleting the logs of the others
2 votes -
Web Appliance Configuration
It would be very useful to have a tool to download and view the configuration fo the web appllainces, mainly the policy configuration.
Right now it seems the only way to get the policy configuration is to extract the policy.xml file from a backup but it's nearly unreadable
3 votes
- Don't see your idea?