SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Mail Protection: Directional filter for Mail Manager

    In Mail Manager, we cannot filter inbound / outbound mails. It would be good to have a filter box for sender / recipient IP, so we can differentiate between inbound and outbound emails. Furthermore, the statistics overview in the main page of Mail Security - Mail Manager counts "messages delivered", but it would be much more interesting to know the percentage blocked/inbound instead of blocked/overall.

    7 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. MailSecurity: official CA support for s/Mime Mail Encryption

    it should be possible to use an official CA for S/Mime Encrytion.
    no onlyt to verify external certificates but also to signate outgoing mails.

    6 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. Mail Security: Stronger TLS Encryption

    X=TLSv1:RC4-MD5:128
    All other customers have TLS encryrtions like this X=TLSv1:DHE-RSA-AES256-SHA:256

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. adjust size from bounced mails

    Hi,
    I have a problem with bounced mails.
    Exim only 100k size to the returned mail.

    ------ This is a copy of the message, including all the headers. ------
    ------ The body of the message is 4414249 characters long; only the first
    ------ 106000 or so are included here.

    Every bounced mail > 100k has a corrupt attachment.
    Our archiv system try to scan the attachment and throw a error.

    Is there a config to limit the size (bouncereturnsize_limit) @ astaro?
    Is there a config to stripe the attachment from the bounced mail?
    Thank you
    Michael

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. Mail Manager: SMTP Quarantine: Attachment Extraction/ Save

    Dropdown option to save attachemts from quarantined messages for further review, before releasing from quarantine.
    Should be fairly easy with the uudeview command already available in linux.

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. Mail Security: SMTP Routing by individual mail address

    It should be possible to configure a mail route, which is used for special e-mail-adresses only. The e-mail adresses can be configured via the Mail-Security/SMTP-Profile WebAdmin.

    For example, we want admin@xcompany.com to go to 192.168.50.88 while everything else for that domain goes to 192.168.50.22

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. Mail Security: Custom Logo / Graphical SMTP Footer

    In Mail Security/SMPT/Advanced, you can enter text that is appended as a footer to each outgoing email.
    Please modify this feature to add a graphical file.
    We want to use this footer for advertising an exhibition e.g. with the CeBit-Logo.

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. Email Encryption: Email Aliases

    Add more than one email address as alias to internal user for S/MIME and OpenPGP.

    11 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. Mail Protection: Blackhole messages for Expressions and Blacklist entries

    I would like a black hole option for expressions or entries on the sender blacklist since that's confirmed spam to me and don't need to have it appearing on the quarantine report.

    6 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. Domain-Based SMTP Routing to Internal Servers

    It should be possible, to choose form Host List different Hosts (internal IPs or DNS names) for sending mails to these hosts according to mail domain. For example, astaro smtp security should be able to relay mails from google.com to host A abd mails from web.com to host B. Same goes for outgoing mails and MTAs (smart hosts).

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. Reimplement "Deny RCPT hacks"

    Earlier versions of ASG offered the possibility to deny email recipients which follow a sender based routing naming scheme (e.g. foo%bar.com@f00.b4r.com). This feature is missing since v6 I guess.
    Unfortunately, this feature is of great importance, since the default behavior of some MTAs (at least postfix) is, to "acceptpercenthack" from locally known IP addresses, which is true for the ASG. So a spammer for example could connect to ASG:25and send a mail to spam%victim.org@asg.domain. ASG will use callouts (if configured) to the internal MTA in order to validate the recipient address. Since ASG has a local…

    5 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. Mail Protection: Separate statistics into incoming and outgoing

    Hi developer-guys,

    it would be great to have separate statistics für incoming (TO own domains) and outgoing (FROM own domains) mails.

    Best regards
    Andreas

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. MailSecurity: Quarantine Report - Limiting Who to send Reports to!

    Currently we can set who NOT to send reports to, but what if we require the opposite, and only what a few select users/groups/domains receiving the quarantine reports.

    In our environment, we had to turn it off so the general users where not receiving the messages.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. SMTP: Multiple Hostnames/Interfaces Support

    With the SMTP proxy able to handle mail for many domains, allow the proxy to be configured so that an admin can assign a hostname per profile, or have the proxy report different hostnames per outgoing interface. (and the ability to specify which domains/profiles go out which interface). Allows for easier management and adoption of many smtp domains on a single asg appliance.

    385 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    33 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  15. Mail Protection: Support for Complex Filtering Rules using Operators

    Adding complex filtering rules with IF/THEN/ELSE.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. Mail Protection: 8-Bit MIME Support

    in WebAdmin you can't enable 8 Bit MIME Support for the SMTP Proxy. So you get a lof of remote NDR with "Diagnostic-Code: smtp;554 5.6.1 Body type not supported by Remote Host" - Remote Host is the Astaro SMTP Proxy. Currently you can just edit the exim conig File manually. A Possiblity to do this in WebAdmin (so then it is also supported) would be great.

    8 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  17. Mail Protection: Report message as SPAM via Mail Log in UserPortal

    Users would like the ability to report any spam that makes it to their inbox. Ideally, there would be a "report" button or link right in the users mail log next to every message that is delivered to the inbox. For quick-picking, it would be nice to have a button for "CONFIRM" to the mail quarantine digest too.

    28 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    8 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. support managed PKI for mail encryption / signing

    For easier management of Astaro's mail encryption / signing feature in larger enviroments it would be helpful, if Astaro would support automated creation of encryption/signing mail users using trusted certificates through a automated interface to a official signing provider as trustcenter or swisssign or equal. There seems to exist RFC compliant interfaces to such providers according to RF2797 standard.

    32 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    6 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  19. MailSecurity: support SMIME Domain Certificates for encryption

    Being able to encrypt all emails of a specific domain with only a single certificate. This makes message based email encryption an lot easier and astaro more compatible with other email encryption players

    139 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    15 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  20. Mailsecurity: Hide internal IP in Mailheader

    It would be nice if the SMTP Proxy is removing the internal IP address in the "received from" line in the mailheader.

    Header with private IP
    Received: from mailsrv ([192.168.0.10]:2994) by asg with esmtps (TLSv1:AES256-SHA:256) (Exim 4.69)

    Header without private IP
    Received: from mailsrv (unverified) by asg with esmtps (TLSv1:AES256-SHA:256) (Exim 4.69)

    57 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.