SG UTM
Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.
-
No beef-dead-beef test packets on RED LAN Ports
beef-dead-beef Packets are sent to test if the WAN tunnel has built up correctly. So in my opinion it is just necessary to broadcast them on the WAN port of a RED. We had an issue with these packets on the LAN ports on a RED which we have fixed through an workaround (we blocked beef-dead-beef on a switch).
1 vote -
RED: Split connections - physically seperate WAN / Internet connections
The RED has two WAN ports. I'd like to be able to use one for a private WAN service and one for a cheap Internet service and have the RED both split tunnel the traffic to the links and use the Internet link as a tunnel failover.
1 vote -
Additional supported UMTS devices RED 10
I really want to see more supported devices on the RED 10, if even extend the current support on the RED to what is available on the the UTM.
2 votes -
Ability to use DNS Group for Notifications
Would like the ability to use a DNS Group over DNS Host or Availability group. The reason is some companies will have separate teams managing the network and windows\dns. It would be upto the DNS Admins to keep the DNS entries up to date and not the network team managing an availability group
4 votes -
RED: DSL/VDSL (PPPOE) Support
RED should be able to do DSL/VDSL (PPPOE), as this way it can be used with an ISP which is very common worldwide in requiring authentication against their modem.
249 votesAfter a careful review we decided to not include this feature in UTM 9.2. We are now considering it for the next feature release whose launch date has not been decided upon yet.
-
RED: Connection with more than one UTM
Would be great to be able to use 1 RED device (RED10, RED50) with more than one UTM at a time to be able to connect to 2 Office/DataCenter with only 1 RED device..
2 votes -
RED10 Diagnostic Log
The ability to either view a log directly on a RED device that is not connecting or insert a USB drive into the RED and the RED will load a diagnostic file onto the USB for viewing.
We are frequently frustrated by RED devices that just "don't work" for one reason or another. With no ability to see at which point the device is failing we are just shooting in the dark to find a solution to get the RED connected.
2 votes -
Huawei E359 USB Modem – Globe Tattoo Stick Huawei E355 USB Modem – Globe Tattoo Stick Huawei E153 USB Modem – Smartbro Stick ZTE MF180 –
3G/UMTS devices supported by Sophos RED10 / RED 50 currently here in the Philippines the models of USB Sticks are the following below
Huawei E359 USB Modem – Globe Tattoo Stick
Huawei E355 USB Modem – Globe Tattoo Stick
Huawei E153 USB Modem – Smartbro Stick
ZTE MF180 – Smartbro Stick
this is a request to have these hw supported for RED
3 votes -
RED: ASG RED-Configuration by CSV-File
It would be nice if there is a possibility that you can upload a predefinied csv-file with all the configuration-data for a mass red deployment.
Example:
Branch-Office Name; RED-ID; IP-Addr; Subnet; DNS, DHCP-Start, DHCP-End,Tunnel-Mode.
3 votes -
show more information about REDs on the UTM
Allow the admin to see the last contact of the RED with the provisioning server to make sure it downloaded its config and when
6 votes -
RED: Physically Switch WAN connections
It would be very helpful if you could swap the broadbands at the remote RED site to make one (or the other) the default main broadband. This would be handy if one line is having problems such as rate limited but is in the main port.
We have limits on our broadband at most sites and have previously managed this with an alternative product no problem so we were surprised Sophos do not offer this feature.
11 votes -
Red with simple Fw rules + NAT
You have done a great job with adding Mac filter that you can simpley push out to the RED. Now can we add one (1) service group to push out so that the remote office that runds RED with Split mode can have som security and should be independed of a nother vendor for that. Also with that NAT out.
3 votes -
Firmware updates - Enable manual control or schedule for big installations
Currently firmware updates run automatically after appliance updates: For bigger installations I would appreciate to have control over the RED update process. After a pilot update of a few devices RED firmware should be rolled out in clusters to reduce the risk of a full field failure (e.g. due to network overload caused by parallel update of 100 devices).
11 votes -
DHCP failover when Static WAN IP fails.
If Static WAN IP fails, dhcp should be tried after a given amount of time. Would alow a offline RED to be reconfigured by using a separate network.
8 votes -
RED USB Port support for local file share and printers
Enable the USB port on a RED device to support eg.USB Hard Drives and USB printers so that customers can benefit from the USB ability by having a local file shares or printers connected to the branch office.
1 vote -
Sierra 310U 4G/LTE support for RED devices
Customer would like support for the product above or 4G/LTE on RED devices. They want it so that when used for HA in RED, when the main internet connection goes offline, it will fail over to the Sierra 310U.
2 votes -
Add the ability to use 2 3G/UMTS on the RED50
Add the ability to use 2 3G/UMTS on the RED50 with different mobile operators for fail-over.
2 votes -
PCI-express RED card
RED device in the form of a PCI-Express card.
Would be very useful to install in to servers.2 votes -
Show Reverse IP in the RED Connection Status
I suggest to put following IP information the reverse ip information also.
It will help us to idenfity fastly what is the telecom operator that the RED use to connect to ASG.
May be will be like this.
SV REDXX (reds1) [ID REDid] online from 201.75.79.148 - 201.75.79.148.dyn.opp.net
SV REDYY (reds2) [ID REDid] online from 205.215.12.89 - 205.215.12.89.ip.opp2.com
etc...
5 votes -
Allow DNAT at RED location
It was my vision of the RED device that I would be able to replace the router/firewall devices at remote client sites and manage the sites from a central console or ASG. I was surprised last night when I learned that I cannot forward ports through a RED node.
In my scenario I have two branch offices which are using RED devices with two ASG220s (HA) at the Data Center. One branch office just has employees, so that one is fine. The second branch office currently houses the Small Business Server and a PBX phone requiring SIP. The SBS will…
6 votes
- Don't see your idea?