SG UTM
Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.
-
combined Uplink and remote Interface
For smaller independet companys it would be great to support a "router aon a stick" solution. I imagine a RED device only connected to any network and have two virtual interfaces, one for the uplink configuration and the second for the remote interface. With such a solution it is possible for the independent company to route all traffic supposed for the tunnel to the RED remote interface and the Tunnel would be established with the first interface. I could also imagine an alternative to Standard/Unified, Standard/Split and Transparent/Split. It would be something like "Routing/Split" where you need two interfaces one…
1 vote -
RED Monitoring via SNMP
It would be useful to be able to monitor the RED devices via external monitoring systems like Nagios. Currently it is only possible to monitor the status of the local interface, which does not give any information about the actual status of the RED-tunnel.
It would be nice to be able to monitor the status of RED-tunnels (and possibly even some remote information like IP-information, connected LAN-ports et cetera)88 votes -
RED LAN Interface up/down when Tunnel up/down
For monitoring purposes it would be very helpful to reflect the RED tunnel status up/down in its assigned LAN interface:
Then a simple ping check (e.g. by nagios) could prove whether the RED is reachable or not.10 votes -
Allow RED to access the internet line when the Main UTM line is disconnected
This added mode could mean no disruption to the branch operations in case the UTM is down due to internet issues and cannot be up soon enough. Once the RED detected the UTM is up, it will establish connection and all traffic can be channel to the UTM once again.
86 votes -
RED - Increase VPN throughput
Hey Guys, are there any plans for new RED Devices? Maybe a VPN throughput about 1000 MBit/s.
Thanks1 vote -
RED: Restart tunnel instead of unit
When the internet connection drops at the main site (UTM location) the RED restarts to get the tunnel up again. When (for some reason) the internet connection stays down at the main site all internet activities at the remote location are down due to continuous restarts of the RED. If the *** only tries to pick up the tunnel, the internet at the remote location can still be used.
77 votes -
RED - local log caching (with push function to UTM)
It would be nice if we have a local (cached) log function in the RED.
On the UTM we only have the opportunity to see RED online or disconnected, but not why.
Therefore, a local RED logging would be great, which sends the information to the UTM when the RED is available again. For example: RED WAN port down, RED get no DHCP address, no connection to Sophos on port 3400 or something like this - to increase the possibilities of analysis.23 votes -
RED: Allow Branch Name to be Renamed
I would like to be able to rename/change the description in the "Branch Name" field of the RED sites. I see that in the WebAdmin there doesn't seem to be a way.
When we get an alert that "redXX is down" it would be really helpful to not have to dig up my notes on which site that actually is. This should be a standard feature.
More detail about this are posted on the forum:
http://www.astaro.org/other-products/remote-ethernet-device-red/47745-rename-red-branch-name.html53 votesUnder Review ·AdminJan Weber (Product Manager, Network Security Group, Sophos Features & Ideas Laboratory) responded
We are investigating adding the option to change Branch Name.
-
add to the red devices web filter
one of the main reasons i didn't get red yet was because it lack of controlling remote office internet usage.
it would be amazing if it had web filer and firewall to have more control3 votes -
RED bridge to lan
RED device does not currently bridge the existing 'internal' interface on the UTM. when you set it up you have to create a seperate ip from the 'internal' dhcp. therefore it does not show up on the same LAN. it is on a seperate LAN.
bridge to lan feature like the AP devices would be a great addition. this way everything is on the same network and can view networked drives or computers or shares.
i have made a workaround to fix it for now until there is an update. it is as follows.
make backup prior
1: add red…
7 votes -
RED Device Internet Connection
Currently if a RED Devices loses connectivity to the UTM the RED Device loses Internet connectivity.
It would be most helpful, if there would be a way to keep the Internet Traffic in Split (Standard & Transparent) to continue to go straight out to to the Internet even if the UTM is not accessible.
1 vote -
Electric RED protection improved
Sometimes, when a power cut occurs on a customer machine (we use RED10 on the machine shop floor to have a remote access
to the automates in a customer plant), the RED10 dies...
There must be a better electric protection of the REDs.8 votes -
RED: Support using own CA in RED to generate 'valid' certificates
Particularly to the RED interface. It would be helpful to apply a certificate to this communication as currently this port 3400 uses a self signed certificate which if you ask the Payment Card Industry Data Security Standard compliance testing they fail you for having a self signed certificate.
17 votes -
RED: Split Tunneling Exceptions
When the RED site goes to internet through the headquarter, when it is in Standard/Unified mode, sometimes it is needed to route the traffic through RED's own internet line for specified destinations. It is very nice to write exeptions for specified ip addresses.
20 votes -
RED Übersicht - Kommentar mit anzeigen
Sehr geehrte Damen und Herren,
wir haben Ihr Produkt die UTM9 in vollem Umfang im Einsatz. Ebenfalls nutzen wir die Red für die Anbindung im Home-Office sowie in den Niederlassungen.
Im täglichen Umgang fehlt mir in der „RED-Verwaltung“ – „Übersicht“ die Möglichkeit das Feld „Kommentar“ – welches unter „RED bearbeiten“ aufgeführt ist, mit anzuzeigen.
In der Übersicht wäre somit Details welche im Feld Kommentar hinterlegt sind direkt sichtbar. Wir hinterlegen dort z.B. wo sich die RED befindet und wer diese im Einsatz hat.
Sicherlich ist dieses Feld einzublenden eine Kleinigkeit. Ich würde mich daher freuen, wenn dieses im nächsten Update…
1 vote -
RED: add WebControl
I think, it will be helpful, when the RED can allow/block traffic, where are configured on UTM. Like you realized it with the Endpoint Clients
1 vote -
RED: Virtualized RED Appliance (vRED)
Virtual Appliance image using as RED Device
86 votes -
the REDS can handle a second DNS server
the REDS can handle a second DNS server
2 votes -
RED: Uplink and UMTS/3G Signal Status
It would be great to know the status of the internet connection uplink(s) in use on our RED sites. Especially with the 3G/UMTS option, perhaps a way could be found to display the signal strength as well for extra benefits?
29 votesGreat idea. This feature will be part of UTM 9.2 which will enter public beta in October. You will be able to test it out at that time. Stay tuned!
-
Conntrack zoning
As investigated with bug ID 35811 if the traffic from behind RED is bridged from UTM into the network and again routed through UTM from another interface the connections are not recorded because a connection tracking entry already exists.
This would allow the RED bridge to be a true transparent L2 bridge so that the traffic flow from inside network and behind RED could use same path.
1 vote
- Don't see your idea?