SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. RED: Combined Red and Access Point

    Have the RED device come with a built in wifi access point similiar to the new offering from Meraki (MR12/16/24).

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  2. VPN: Bind Rules to Tunnel

    It would be great if I could bind Firewall rules/ Network definitions to IPsec Tunnels.

    Now if i have a Rule like:
    Client_Network -> Web Browsing -> Internet IPv4 -> Allow

    This means that clients can browse through the VPN tunnel as well, beause the Tunnel is bound to the EXT Interface too.
    Now, I can make the necessary deny Rule and place it before the allow Rule, but this is cumbersome and not ideal.
    The simplest way would be that VPN Tunnels are handled as separate physical interfaces and can be bound as such..

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  3. 2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  4. Reporting: Display VPN traffic usage of past 24 hours

    The VPN traffic should be counted for 24 and not only after a logout of the user.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  5. path to route.exe on customized windows installation

    At SSL-VPN client, the route.exe file is static pointed on c:\windows\system32 path. Somes customized installations refers to c:\winnt\system32. In this case the VPN will not work. Solution: mkdir \windows\system32 and put a copy of route.exe there. Suggetion: the SSL-VPN client should use the path - systemvar. %path% or %windir%.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  6. Announce VPN Pool Networks (for Remote Access) via OSPF

    When enabling one or many of the remote access protocols, like IPSEC, SSL, PPTP, etc, the used network address pool should be announced as an OSPF route, so that the remote client can access all internal devices.

    10 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  7. Proxy ARP on SSL Tunnel-Interface

    Allow to enable proxy ARP on tun0 SSL-tunnelinterface so you can use IP addresses from the LAN for SSL remote access VPN-Clients. I have tested that this works by 'echo "1" > /proc/sys/net/ipv4/conf/tun0/proxy_arp' on the command shell.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  8. VPN: Set MTU for L2TP VPN

    today it is only possible to do this by manually changing mtu/mru in /var/chroot-ipsec/etc/ppp/options, and that file is overwritten by (some) firmware updates.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  9. Pushing Routes to SSL Clients with custom Metric

    It would be helpful to define which routes are pushed to the SSL clients AND define the desired Metric to the route. I's needed when clients open the tunnel in the internal network and you don't want the traffic to go through the tunnel instead of the local NIC.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  10. 10 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  11. SSL VPN: Client Installation Options

    It would be nice if you could pass options to the SSL VPN Client installer, such as
    auth-nocache etc....

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  12. VPN: IOS XAuth Password

    Currently the configuration available via the UserPortal automated setup has no way to include a password for the user, which they must then specify every time they connect. Including the password would allow one-touch VPN connecting!

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  13. VPN: Time-Based Tunnel Rules

    Open or closed a remote access or site-to-site tunnel via time rules. In banking sector you need this feature.

    10 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  14. Large SSL certificate sizes support

    I would like to be able to actually control the bit size limit if the certificate and ca for the ssl vpn feature like (4096)+ bit length

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  15. Customizable User Certificate Validity Period

    User certificates (used for ssl VPNs) has very long duration (20 years?). IT revisions are not very satisfied with such configuration, proposed certificate validity is 1 year or less.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
1 2 10 11 12 14 Next →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.