It would be sweet if the SG would do a cleanup/purge of old data beyond reporting time.
Path: "logging & reporting --> reporting settings --> settings"
This is especially handy with the smaller devices with excessive logs and will prevent us from doing a REBUILD DB, with the loss of whole database.
(Example of reallife situation in CaseID [#8254771] )54 votes
When clients connect via the SSL Remote Access VPN, you should have the option to assign IP Addresses via an internal DHCP server and not only from the UTM Virtual IP Pool. This is currently available with PPTP and L2TP over IPsec but not with SSL VPN. Companies need to have more control over the IP addresses and leases assigned to clients that connect via the SSL VPN.19 votes
It would be interesting some blocking method for e-mail sended from a same address in a small space of time.
Eg: the address firstname.lastname@example.org sends 1000 email to the protected domain on UTM in 2 seconds.
Remembering that this would not apply to the whole domain but to an speciffy address.
This would be interesting when an email box is hacked and used to send many spams.9 votes
Standard ADSL Support on SFP+ Modem13 votes
Let's Encrypt Integration came with UTM 9.6. That's great!
You should now implement the support of Let's Encrypt Wilcard domains with ACMEv2.
Best Regards17 votes
I'd be nice if you would include WireGuard in your suite of server-side VPN protocols in your UTM line.20 votes
I hope that Sophos will update their current AP products to WPA3 and not only ship new hardware with a WPA3 certification and firmware. The release of WPA3 is planned for late 2018 and would be a great addition to existing hardware installations.43 votes
It would be nice if it were possible to customize the Spam Report. E.G. to add Blacklist and Delete Buttons.9 votes
Enable the new manual Sandstorm Upload for a select group of Users in the User Portal.
We would like to enable people who are the first point of contact, e.g. HR Department for job applications, to be able to scan suspicous documents and files for a thorough analysis.4 votes
SOPHOS UTM Mail Protection gives the option for crating exceptions on Email Address / Domain, IP or recipient.
The Email Address which is used for white listening is the ENVELOPE header in the email.
We have the problem, that we have an service, which use Amazon AWS for sending mails. This mails run into the quarantine.
To whitelist, we need to whitelist die AMAZON AWS Envelope domain, which are for all AWS services the same.
Please create an option to choose the header flag – ENVELOPE or FROM field.
The Search Log Files feature (Action, Time, URL, User) is very useful when using report format, but we were not able to download it.
It would be very interesting to be able to download these searches, just as we can do in Logging & Reporting> Web Protection6 votes
We need an report of all creators of vouchers. The event of "create a new voucher from template xy" is not logged currently by the UTM. There is no logfile (or a database field in the hotspot db).
Please implement the following:
- log the creator of an voucher with voucher template information
- report of hotspot voucher creators of the last 7/30 days
If the report is not possible, then it would be nice to get an event in a log file. So we can implement an external reporting.
Thanks and "vote for me"3 votes
MacOS users with the newest version of Tunnelblick are starting to experience compatibility issues with the current OpenVPN version used by SSL VPN.34 votes
Let's Encrypt Integration is really cool but it would be even better if there is support for Domain Validation via DNS challenge. With DNS challenge, you can prove domain ownership (through responding to a challenge with a DNS TXT record) without the need to expose any services to the Internet.4 votes
our customer need an info , looks like site2site ipsec up/down , but for IPSEC Client.
So if an employee or some one get connected over IPSEC, the admin get an info.3 votes
With current exim configuration, the "Out Of Office" replies getting rejected by the BATV due to the null return address in the reply. Please add a feature to handle these messages pass through the BATV feature.3 votes
Send the top user report via email when the interface utilization speed crosses the set threshold value4 votes
Currently, the Amazon VPC setup does not support the new Transit Gateway in AWS. When you attempt to import via config file or secret key it errors out with a Regex error.
I went up the whole chain of premium support and the GES Engineer let me know it currently isn't supported.
As Transit Gateway is the future of Inter VPC & S2S networking this would be nice to have supported.1 vote
We need real time bandwidth per ip or user base.18 votes
Please implement support for DNS over TLS queries to supported resolvers (like the new Quad9 resolvers). Very important privacy feature, imho.81 votes
- Don't see your idea?