MacOS users with the newest version of Tunnelblick are starting to experience compatibility issues with the current OpenVPN version used by SSL VPN.

I'd be nice if you would include WireGuard in your suite of server-side VPN protocols in your UTM line.

The default behaviour of the SSL VPN client is to truncate the log file on OpenVPN startup. Want to have the option to append in stead of truncate.

Currently it's not possible to configure site-2site ipsec Connection with networks which are already configured in static Routing. It doesn't matter if the ipsec Networks are smaller than the static route Networks. The ipsec deamon results in an error message like: "cannot route -- route already in use for "

It should be possible to setup a site-2-site tunnel with subnetwork ranges, which are already configured and covered by a static route.

An option to get a updated DNS Server for Linux VPN Clients. Currently the OpenVPN option only sets the DNS Server for Windows Clients.

An option to get a updated DNS Server for Linux VPN Clients. Currently the OpenVPN option only sets the DNS Server for Windows Clients.

Microsoft have been working on their Intune Solution which includes a way to configure a VPN policy that is deployed. There are a number of "Connections" available from other vendors by Sophos are not present. It would be great if Sophos would create a "UWP VPN plug-in" which will allow us to be able to configure VPN's via this. If using Autopilot in the future too a VPN maybe required if not in the office and this same configuration is used.

possibility to add DNS to every different VPN Users group.

When using HTML5 VPN session with http webapps, PDF preview is not supported.
PDF preview would be a nice feature.

For example, for WAN 1, I will let sales group to VPN to access certain areas of the network, For WAN 2, I will only let those road warriors to access a more restricted area of the network instead of using 1 WAN link that gets filtered by the UTM level. My previous vendor, Watchguard, do have such function, except that Sophos has a higher throughput.

At the moment, SSL VPN client supports multiple language, including traditional Chinese.
It would be great if Simplified Chinese is supported as well.

Cheers

I need a way to specify the maximum number of concurrent SSL VPN connections to our AWS SOPHOS UTM9 Security Appliance to meet a NIST 800-53 Rev4 FedRAMP requirement. I am permitted to to allow concurrent connections, but must either limit them to no more than three, or disallow them completely. Since Sophos SSL VPN leverages Open SSL, this feature does not currently exist in the product. It would be very beneficial to our development team if Sophos could implement this feature.

The HTML5 VPN Portal works for almost all platforms exept iOS. It would be great if you could add support for RDP/VNC connections on iOS devices.

We need the ability to deploy the SSL VPN client is a centralized manner. Our remote users do not have local admin rights on their machines, so it would be great if a package could be deployed that would automate the install. I understand that each installation package has the users' certificate, but there still needs to be a solution to this. It was simple with the firewall product we moved from to remotely deploy the SSL VPN client software to the endpoints.

when failed logins UTM gives a log by WAN IP - suggest must have a way to find out or masked the WAN IP from the AD users when connecting. Thanks!

By default VPN session is droppedafter 8 hours when OTP token reaches end of validity. Causing loss of data for users. Suggest a 5-10min popup warning from the VPN session icon in the system tray so user can save data and close session and then open renewed OTP VPN session.

Currently there is no option to add an IP list in allowed ipv4.Network resources. This feature was there in Cyberoam. Post migration to Sophos, it wasnt possible.
Request to add this feature, so that ACL will be more sophisticated at Firewall Level.