SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. 13 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Remote Ethernet Device (RED)  ·  Flag idea as inappropriate…  ·  Admin →
  2. IEEE 802.1X authentication on RED devices

    It would be great if you could define MAC-based authentication on the RED devices with 802.1X and a RADIUS server to ensure that just our own notebooks and phones on the remote locations can enter our company network. Foreign MAC-adresses should not be authenticated and blocked.

    12 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Remote Ethernet Device (RED)  ·  Flag idea as inappropriate…  ·  Admin →
  3. Troubleshooting for RED

    to be able to do basic troubleshooting on RED devices it would be fine to include CLI access and some basic commands like:
    tcpdump
    traceroute
    ping
    telnet (for Port checks)
    ...

    this would be fine, if something fails between remote location and central device. It would be nice to be able to prove functionality for other involved parties.

    12 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Remote Ethernet Device (RED)  ·  Flag idea as inappropriate…  ·  Admin →
  4. Failover Tunnel RED between two UTMs

    Two UTMs connected by Tunnel RED, there is no failover function working well, because when two tunnels are connected between the UTMs, when the first one is down, the second takes the connections like expected, but when the first tunnel back, the tunnel is still with the second link and it is not backing to the first tunnel.

    I ask to vote in this function that is extremely important on cases with two link for failovers.

    11 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Remote Ethernet Device (RED)  ·  Flag idea as inappropriate…  ·  Admin →
  5. RED device with integrated wifi

    Why not integrate wifi into the RED? Just adds to its simplicity.

    11 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Remote Ethernet Device (RED)  ·  Flag idea as inappropriate…  ·  Admin →
  6. RED: Physically Switch WAN connections

    It would be very helpful if you could swap the broadbands at the remote RED site to make one (or the other) the default main broadband. This would be handy if one line is having problems such as rate limited but is in the main port.

    We have limits on our broadband at most sites and have previously managed this with an alternative product no problem so we were surprised Sophos do not offer this feature.

    11 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Remote Ethernet Device (RED)  ·  Flag idea as inappropriate…  ·  Admin →
  7. Firmware updates - Enable manual control or schedule for big installations

    Currently firmware updates run automatically after appliance updates: For bigger installations I would appreciate to have control over the RED update process. After a pilot update of a few devices RED firmware should be rolled out in clusters to reduce the risk of a full field failure (e.g. due to network overload caused by parallel update of 100 devices).

    11 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Remote Ethernet Device (RED)  ·  Flag idea as inappropriate…  ·  Admin →
  8. RED : Service based option to manage traffic from RED to UTM

    I would love to see an option where i can choose internet traffic to go from local internet line rather then RED IPSec tunnel to UTM to reduce bandwidth load on upload tunnel.
    A service based option where we can divert traffic for example HTTP, SMTP to use local internet line where red is connected and DNS, DHCP, FTP to use RED tunnel going towards UTM.

    10 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Remote Ethernet Device (RED)  ·  Flag idea as inappropriate…  ·  Admin →
  9. RED LAN Interface up/down when Tunnel up/down

    For monitoring purposes it would be very helpful to reflect the RED tunnel status up/down in its assigned LAN interface:
    Then a simple ping check (e.g. by nagios) could prove whether the RED is reachable or not.

    10 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Remote Ethernet Device (RED)  ·  Flag idea as inappropriate…  ·  Admin →
  10. RED: Configure UTMS/3G failover (or keepalive)

    At the moment it is not possible to use multiple failover options for UMTS. This means that it can take up to 2 minutes for the UMTS to startup if the wired line fails.

    I have some customers which want to use the RED and also would like to use the failover, but it needs to work quicker.

    It would be a good enhancement if the client gets an option how long the Astaro will wait till the failover takes please, and has an option to keep the UMTS connection open(to help reduce connectino setup time)

    10 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Remote Ethernet Device (RED)  ·  Flag idea as inappropriate…  ·  Admin →
  11. Firmware Automatic Restore of the RED

    Firmware Automatic Restore of the RED when it lost itself (firmware corrupted)...
    Sometimes, when a power cut occurs on a customer machine (we use RED10 on the machine shop floor to have a remote access
    to the automates in a customer plant), the firmware of the RED10 get corrupted.
    And after that, the only solutoon for us is to send another RED10 to the customer.
    So the support is at least 24h late...
    We can't ask the customer to do the manual firmware restore. They are industrials not IT...

    9 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Remote Ethernet Device (RED)  ·  Flag idea as inappropriate…  ·  Admin →
  12. Add access controls for RED "Listening" Service

    As a Sophos Partner, I'm increasingly getting hammered by clients who have to subject themselves to audits in order to do business. Therefore I am asking that Sophos add access controls to the RED listening service. I am requesting that the RED service on the UTM be configured to use any arbitrary IP address on any of the WAN interfaces, and only allow connections from RED devices from known IPs. Here's why:

    I have clients who fail PCI compliance audits because of the self signed IP. I know that the 1 CA trust model is better, but the auditors my…

    9 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Remote Ethernet Device (RED)  ·  Flag idea as inappropriate…  ·  Admin →
  13. RED: USB Tethering from iPhone / android

    We want the ability to use an iPhone ( or Android ) as a modem via USB tethering in the event of an internet outage at the site.

    Instructions from IT would then be as simple as asking the Branch manager to plug their iphone into the red and turn hot spotting on.

    9 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Remote Ethernet Device (RED)  ·  Flag idea as inappropriate…  ·  Admin →
  14. 9 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Remote Ethernet Device (RED)  ·  Flag idea as inappropriate…  ·  Admin →
  15. Create reports of UP and DOWN state of Red devices

    Actually, we can't create a report of the number of times that sophos RED Devices go from UP state to DOWN but we need it because of this manner we can have better clarity

    8 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Remote Ethernet Device (RED)  ·  Flag idea as inappropriate…  ·  Admin →
  16. Electric RED protection improved

    Sometimes, when a power cut occurs on a customer machine (we use RED10 on the machine shop floor to have a remote access
    to the automates in a customer plant), the RED10 dies...
    There must be a better electric protection of the REDs.

    8 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Remote Ethernet Device (RED)  ·  Flag idea as inappropriate…  ·  Admin →
  17. DHCP failover when Static WAN IP fails.

    If Static WAN IP fails, dhcp should be tried after a given amount of time. Would alow a offline RED to be reconfigured by using a separate network.

    8 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Remote Ethernet Device (RED)  ·  Flag idea as inappropriate…  ·  Admin →
  18. RED 50 Monitoring of WAN1 / WAN2 with snmp

    I want to Monitor the two WAN-Interfaces of the RED50 with snmp.

    Another Thing is: I want the second WAN Interface to be permanently on and refreshing the DHCP-Address, as it usual, not only if the Interface is in use..

    7 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Remote Ethernet Device (RED)  ·  Flag idea as inappropriate…  ·  Admin →
  19. RED bridge to lan

    RED device does not currently bridge the existing 'internal' interface on the UTM. when you set it up you have to create a seperate ip from the 'internal' dhcp. therefore it does not show up on the same LAN. it is on a seperate LAN.

    bridge to lan feature like the AP devices would be a great addition. this way everything is on the same network and can view networked drives or computers or shares.

    i have made a workaround to fix it for now until there is an update. it is as follows.

    make backup prior

    1: add red…

    7 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Remote Ethernet Device (RED)  ·  Flag idea as inappropriate…  ·  Admin →
  20. RED : Configurable RED WAN Speed and Duplex Mode

    Dear Sophos Team,

    please implement configurable Wire-Speed Settings on the RED WAN Interface.

    Right now it's on autonegotiation.
    Unfortunately there are some broken routers and sometimes the RED WAN Interface need to be set to e.g. 100 mbits Full-Duplex.

    Please also take a look at https://ideas.sophos.com/forums/17359-sg-utm/suggestions/18573559-configurable-mtu-on-red , if AutoNeg is broken, MTU may also have a hiccup.

    6 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Remote Ethernet Device (RED)  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.