SG UTM
Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.
-
3 votes
-
Create reports of UP and DOWN state of Red devices
Actually, we can't create a report of the number of times that sophos RED Devices go from UP state to DOWN but we need it because of this manner we can have better clarity
8 votes -
RED : Configurable RED WAN Speed and Duplex Mode
Dear Sophos Team,
please implement configurable Wire-Speed Settings on the RED WAN Interface.
Right now it's on autonegotiation.
Unfortunately there are some broken routers and sometimes the RED WAN Interface need to be set to e.g. 100 mbits Full-Duplex.Please also take a look at https://ideas.sophos.com/forums/17359-sg-utm/suggestions/18573559-configurable-mtu-on-red , if AutoNeg is broken, MTU may also have a hiccup.
6 votes -
Specify RED source WAN interface
I sure hope this isn't a duplicate. I have a client who has UTM at his sites. Each site has two internet circuits, from to difference providers, and each site has the same two providers as the other sites. He would like to pin a RED using the first vendor's internet circuits, and pin a second so the red will be built only on the second internet company's circuit. While you can control the destination of the RED, it doesn't appear that you can control the source interface for a given RED. I am suggesting that it would be possible…
5 votes -
RED 50 Monitoring of WAN1 / WAN2 with snmp
I want to Monitor the two WAN-Interfaces of the RED50 with snmp.
Another Thing is: I want the second WAN Interface to be permanently on and refreshing the DHCP-Address, as it usual, not only if the Interface is in use..
7 votes -
Allow for USB 4G/3G to be configured as a primary connection
We have 100+ sites around the country. Settings up ADSL or any other form of wired connection as sites only last around 1-2 months.
Allowing the RED device to use the USB Dongle as its primary connection would be great so they can be setup without needing a wired connection.
5 votes -
remotely reboot a red device
It would be handy if you could use the UTM console to reboot a remote ethernet device (RED). Right now always someone on the other side is needed in case a RED needs a power cycle.
73 votes -
support huawei 3376 and 3372 dongles
support huawei 3376 and 3372 dongles
21 votes -
RED PCI Compliance Changes
PCI Compliance will always fail on current UTMs using RED. This is due to being unable to disable SSL v3 on this as well as being unable to change the certificates used (currently weak, not using at least 2048 bit keys). Please fix!
60 votes -
Firmware Automatic Restore of the RED
Firmware Automatic Restore of the RED when it lost itself (firmware corrupted)...
Sometimes, when a power cut occurs on a customer machine (we use RED10 on the machine shop floor to have a remote access
to the automates in a customer plant), the firmware of the RED10 get corrupted.
And after that, the only solutoon for us is to send another RED10 to the customer.
So the support is at least 24h late...
We can't ask the customer to do the manual firmware restore. They are industrials not IT...9 votes -
Failover Tunnel RED between two UTMs
Two UTMs connected by Tunnel RED, there is no failover function working well, because when two tunnels are connected between the UTMs, when the first one is down, the second takes the connections like expected, but when the first tunnel back, the tunnel is still with the second link and it is not backing to the first tunnel.
I ask to vote in this function that is extremely important on cases with two link for failovers.
11 votes -
RED-Device with PoE on LAN-Port
One LAN-connection to the RED-Device should be supplied with PoE to supply a VoIP phone with voltage.
5 votes -
RED : Transparent Split: Configurable MTU Size
Please create a Webadmin or cc Option for setting MTU size in transparent split mode.
It should survive an Red reboot / Red Firmwareupdate and should be redistributable in a cluster environment.
7682537
3 votes -
IEEE 802.1X authentication on RED devices
It would be great if you could define MAC-based authentication on the RED devices with 802.1X and a RADIUS server to ensure that just our own notebooks and phones on the remote locations can enter our company network. Foreign MAC-adresses should not be authenticated and blocked.
12 votes -
Add access controls for RED "Listening" Service
As a Sophos Partner, I'm increasingly getting hammered by clients who have to subject themselves to audits in order to do business. Therefore I am asking that Sophos add access controls to the RED listening service. I am requesting that the RED service on the UTM be configured to use any arbitrary IP address on any of the WAN interfaces, and only allow connections from RED devices from known IPs. Here's why:
I have clients who fail PCI compliance audits because of the self signed IP. I know that the 1 CA trust model is better, but the auditors my…
9 votes -
Health / Usage
We would like a way to view the current usage of a Red device, including CPU, bandwidth, and other usages.
2 votes -
RED: VLAN Tagging and Sophos AP Support in Standard/Split Mode
Actually there is no way to use VLAN Tagging and Sophos Accesspoints on RED Sites if Standard/Split Mode is selected.
Why: If there is small internet connection on the UTM Site, it is useful to route the Internet traffic directly to local Internet router on the RED Site like Split Mode.5 votes -
Request to update the USB dongle list supported for RED and add version control
Request to update the USB dongle list supported for RED and add version control
4 votes -
Extended RED logging on UTM
Enable extended logging of RED device-connections on the UTM. This should include the following infos:
- RED downloaded config from provisioning server
- RED has initialized firmware update
- DHCP-config the RED received (if configured as DHCP)This would greatly enhance the ability of the admin to debug RED-issues before opening a support call with the Partner and/or Sophos and may speed up recovery times.
Therefore it would be beneficial to all parties :-)3 votes -
DHCP on RED
I think it would be great if we have an option to move the DHCP server for RED networks from the UTM to the RED device. This would allow normal LAN access (e.g. file and print sharing) at the remote site even with a disconnected or outage on your uplink.
45 votes
- Don't see your idea?