Secure Web Gateway

Suggest, discuss, and vote on new ideas for Sophos Web Gateway. Complete web protection everywhere.

Secure Web Gateway

Suggest, discuss, and vote on new ideas for Sophos Web Gateway. Complete web protection everywhere.

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. LastPass

    In Sophos Central > Web Gateway > Application Control > Password/License recovery tool section, please add LastPass password manager

    4 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Central Management  ·  Flag idea as inappropriate…  ·  Admin →
  2. Please add "WeTransfer" as WebAppliacation in SWA

    "WeTransfer" should be available in WebAppliaction on the SWA.
    Please add the Web Application control for this webservice on the SWA!
    (Due to customers request Sophtrac 7041991)
    Thanks for considering!
    Kind regards...

    6 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  3. Update HTTPS Scanning onward Hello

    Currently once HTTPS scanning is enabled, the onward TLS Hello from the Web filter advertises all available suites, which decreases the security of the user agent configurations. Either there should be a GUI option to remove older Cyphers or the filter should copy the advertised suites from the users client hello

    2 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  4. Not blocking many adult websites

    web security is very bad

    even after selecting option to block adult content, its not blocking many adult websites

    http://www.freebunker.com
    http://www.imagesnake.com
    http://www.imgcarry.com
    http://imgprime.com

    and may more
    please fix it immediately

    2 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  5. More Granular Control Over Granting Access to File Sharing Services

    Rather than an all or nothing policy it would be extremely useful to be able to have more granular control over the level of access provided for file sharing services such as Dropbox. By more granular I mean being able to provide access to specific folders rather than the whole service. I have been advised by Sophos technical support this is currently not possible hence my request.

    2 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Policy (Appliance and Endpoint)  ·  Flag idea as inappropriate…  ·  Admin →
  6. Use HTTPS call for ATP events

    It would be wonderful, if the SWA could make an HTTPS call to an external system, like macmon (network access control), on a new ATP event.

    So the NAC could shutdown the switch port directly. In this way, we bring up our IT security to a higher level.

    1 vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  7. Logging of all requests hitting the web proxy

    It would be really handy if the logs showed failed authentication, or the option of showing these. If there are any other requests that hit the proxy which it ignores show these too.

    Resorting to packet capture on the client I think is over the top. It also can cause wasted time as presently as authentication exceptions put in like others do not always work for what ever the reason.

    2 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  8. Allow mDNS/Bonjour on the local LAN to work in the browsers.

    Allow mDNS/Bonjour on the local LAN to work in the browsers. The web protection currently blocks them for no apparent reason.Put an option in the software to allow mDNS to work, it IS the age of iOT after all.

    4 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  URL Categorization  ·  Flag idea as inappropriate…  ·  Admin →
  9. Disable/Remove "Login as a guest user" via Captive Portal

    Disable/Remove "Login as a guest user" via Captive Portal.

    1 vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  10. Socks proxy support with http proxy

    Sophia web appliance should support socks5 too. This would allow MacOS and Cisco Anyconnect to integrate more with it. Currently Anyconnect sets all the MAC proxy settings to the same proxy server but because socks isn't available only certain functions work properly.

    1 vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  11. SWA should be able to detect/block TOR (the onion router) traffic!

    a customer (see sophtrac 6741961 for details) asked for an feature/improvement for the SWA. It should be able to detect and block TOR traffic (The Onion Router)
    --> https://en.wikipedia.org/wiki/Tor_(anonymity_network)
    Thanks!

    2 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  12. Enable XF forwarding on Web Appliance

    Enable XF forwarding on Web Appliance

    1 vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  13. spam notification for the recipient that a spam has been received and quarantine.

    Customer would like to have a feature to notify the recipient that a spam has been received and quarantine.

    2 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  14. Web appliance automatically clear usercache

    Submitting on behalf of client. On the backend of the web appliance if you can automate the user cache to purge older users that have authenticated. Currently anything in the user cache is kept permanently - if there is no new authentication and coming from the same IP this would cause incorrect reporting data.

    For example any users thate authenticated and is still in the cache over 'x' amount of months/days should automatically delete.

    5 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  15. Web Control: Option for live connect in web policy

    When in a large International MPLS connected networks, allow for remote sites to live connect via their local break out internet connection rather than all web browsing traffic being pushed to the appliance via the connected links. Thus being able to benefit from full categorisation and reporting.

    2 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Policy (Appliance and Endpoint)  ·  Flag idea as inappropriate…  ·  Admin →
  16. As an admin I would like to test policy application also for roaming endpoints.

    On Sophos Web Appliance, actual policy tester tool does not care of roaming endpoints, if additional policy is applied for machines connecting from outside the local network, policy check results does not allow administrators to know which policy is currently applied for roaming endpoitns.

    4 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  17. local site list

    Improve the way the web appliance handles local site lists when you reach over 5000+, When too many local site lists it causes websites not being tagged correctly, or when adding local site lists it doesn't go through properly

    2 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  18. Secure connection for WiFi login screen

    Cyberoam doesn't give a secure connection ever since being acquired by Sophos. Not only is this unsafe, but websites using HSTS cannot be accessed. I really think this needs to be addressed so that a secure https connection is provided.

    2 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  19. (user- or group-) policy based option to restrict maximum filesize per download

    customer called with the need to restrict the maximum filesize of single download: like setting up a policy for a usergroup XY to allow downloads with a maximum filesize of 50MB.
    Thanks for considering ;)
    Sophtrac

    3 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  20. SWA: customer would like to receive a copy of the 'support request'

    hi,
    customer said, that he would like to receive a copy of the message sent by the "support request via email", which can be used to send additional information from the appliance to the sophos tech support .

    Customer requested the option to receive a copy of the content to the email address he added in the related input mask.
    thanks!

    2 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Appliance  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.