SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. DMVPN

    For some customers interesting to have DMVPN, to prevent multiple end-to-end Links.

    9 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  2. Dynamic VPN: AD password change over SSL VPN

    users needs to be able to change their Active directory password remotely via dynamic VPN when password expires

    16 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  3. SSL VPN: Support IPv6

    Currently SSL VPN only pushes IPv4 configuration to the client. With some manual editing under the hood you can add IPv6 in the config files.

    I'd like to have this feature by default using the GUI!

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  4. OPENVPN client

    Would like to be able to use the system as an OpenVPN client.

    47 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  5. Hook to support DNS Server update for Linux VPN Clients

    An option to get a updated DNS Server for Linux VPN Clients. Currently the OpenVPN option only sets the DNS Server for Windows Clients.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  6. email on vpn connection

    Get an email alert when a specific user logs into the VPN

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  7. Allow Multiple Pools for SSL VPN

    Hi,
    I configured Remote access on UTM 430 and while defining multiple profiles each having different access level. There is a limitation that Sophos does not allow different SSL VPN Pools. It leads to limited control. Mostly devices restrict access on the basis of IP subnet.
    Though Sophos allow access restrictions on the basis of user groups but this task is somewhat not easier.
    To restrict the access for a certain destination network, you need to disable the automatic created security policies and need to define manually.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  8. Access Control - "Restart IPSEC Connections"-"Right"

    There has to be a "right" for restarting (deactivate and then activate) "IPsec Connection" which is actually not possible. There is now only a possibility to fully give access an user to "networking" or only "Read" rights which is not enough to restart ipsec connection. For example if you have administrators who have to be restricted on the sophos firewall but have to check daily tasks like check ipsec connections and restart them if needed, then this is not possible with the actual version 9.351-X. MAKE IT POSSIBLE PLEASE!

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  9. Remove the limit to HTML5 VPN definitions.

    I love the security provided by the HTML5 VPN - But we all know that it puts a high load on the UTM. Perhaps Sophos has limited the number of defined connections to keep us from overloading the system, but I find this method to be quite arbitrary. The limit should not be on the definitions, rather the actual concurrent connections established with the HTML5 VPN. I need to define all my users RDP sessions, even though only a handful will be accessing the system remotely at any given time. This way the HTML5 portal can be useful in my…

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  10. IKEv2 support

    We would like to see IKEv2 support so that we can connect to Azure.

    Otherwise this will be a deal breaker and we will be forced to use other appliances very soon.

    41 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    7 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  11. Remove support for DES and DH768 or allow them to be disabled

    Remove support for DES and DH768 or allow them to be disabled. PCI security scans flag their availability as a risk (QID: 38115), even though they are not in-use.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  12. PDF preview in HTML5 webapp (http) (SG UTM)

    When using HTML5 VPN session with http webapps, PDF preview is not supported.
    PDF preview would be a nice feature.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  13. Add multiple domain searching in SSL VPN

    Currently it is not possible for us to add our two domains to the VPN client. Please update so more than one domain can be added in the Remote Access > Advanced section, allowing VPN to search multiple domains.

    12 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  14. Make SSL-VPN "route delay" option configurable over the Web-GUI

    We have DNS resolve problems with some SSL-VPN clients which can be solved bei changing the value of "route delay" from "4" to "2" in the template config-file /var/confd/res/openvpn/client.ovpn-default. But these changes will be overwriten every time the firewall gets an openvpn update. So please make die value configurable via web-gui.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  15. Support UTF-8 characters in HTML5 VPN clipboard

    Support UTF-8 characters in HTML5 VPN clipboard

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  16. SSL VPN on multiple interfaces

    It would be nice to select 2 or more interfaces on the settings of the SSL remote access. We have an UTM with multiple WAN addresses. One of the addresses is used for 443 (SSL) NAT to an internal webserver. But we want to let the UTM listen on 2 other addresses for incoming SSL VPN connections on port 443 TCP. We can only select one interface or any. But with any the UTM sees the conflict with the SSL NAT.

    15 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  17. Netbios over VPN and SAMBA AD over VPN

    Dear Sir

    We have sold SG210 and SG125 to one of my client to connect their two offices over IPsec VPN. They have workgroup environment in both their offices, after configuring IPSec VPN they are able to ping the computers but not able to access the computers (workgroup).
    I had a talk with sophos support and read some technical documents which say that NETBios over VPN traffic is disabled automatically by device.
    Then sophos support suggested to implement Active Directory then i have configured SAMBA as AD but we are not able to connect the AD over VPN.

    This is…

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  18. VPN timeout for Windows and IOS clients

    I would think this would be something that would be a standard feature, but guess now. There should be a way to set a timeout on the VPN connection either users connected via laptops or iOS devices so they don't have to remember to go back in and manually turn off or disconnect their vpn connections when they are done, they end up staying connected forever and I see this as a security risk when they are connected in to our network from the outside.

    Please add a simple timeout feature for SSL VPN connections.

    9 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  19. Have L2TP remote users show up on the Remote Access Online Users screen

    Have L2TP over IPsec users show up on the Remote Access Online users screen. right now the only way to see if someone is connected is through Logging Remote Access and then Session.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  20. Allow IP Reservations for Users using the SSL VPN

    Having an issue with Cisco IP Communicator and the Sophos SSL VPN client where we are having to hardcode the ip of the VPN in the Communicator. And every time these users log back in they get a new IP and causes me to have to remote in and change it for them everytime. This worked fine on our low end FortiGate, and now we have an SG430...and it doesn't work.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.