Please Correct the trigger area ON-OFF on firewall rule policy, please make it just only clickable only on the bottom icon. Now the activates area is expanding according to the size of the rule??
We have to face the difficulty of using it. we always disable the rule by mistake because we did not recognize the area which is not an icon also do the trigger

But this behavior did not happen in NAT Rule, Masquerading, or any toggle switch on other features in the firewall.
We used Firmware Version: 9.702-1

It will be nice, if there is a button for downloading the extern S/MIME Certificates from Email Protection > Encryption > S/MIME Certificate.

Simular to the WebAdmin button and right click menu option in the SUM Card View, it would be nice to add the possiblity to access the Mail Manger without opening the WebAdmin first.

Enable the new manual Sandstorm Upload for a select group of Users in the User Portal.

We would like to enable people who are the first point of contact, e.g. HR Department for job applications, to be able to scan suspicous documents and files for a thorough analysis.

Hi,

the sophos support told me, to place my issue here.

Currently it is not possible to translate all web messages, e.g. the quota time limit page. I can translate only a part of it, which looks rather unprofessional to the enduser.

Thanks for reading.

Marcel Hoffmann

"Auto-Firewall ist auf" Übersetzungsfehler in deutscher WebAdmin-Sprache, z.B. unter Fernzugriff -> SSL -> Profile, wenn ein Profil angelegt ist
LG

There's the API which you can use to GET and PUT and there is the Sophos UTM version 9.6 Beta manual Sandstorm file submission. Please extend the API so we can script the sandstorm file submissions.

https://ideas.sophos.com/forums/17359-sg-utm/suggestions/13393251-make-an-api-for-sandstorm-sample-submissions

Better option to translate Templates

It would be nice to have an traffic counter on every firewall rule that keeps track of how much data has been processed by a certain firewall rule. Sophos XG and other vendors have had this feature for very long which makes it easy for administrators to see which rules are unused or which rules are frequented very much.

add the link
https://secure2.sophos.com/en-us/support/submit-a-sample.aspx
to the support section so makes it easier to submit a sample

because i submitted the sample to the wrong sophos webpage and sophos support never got the sample

We happened quite frequently to have an up2date failing, particularly when doing it in a Active/Passive UTM Cluster, because /var/up2date/sys is full.

It happens when gpg image is being uncompressed.

The most raging point is that there are many other mountpoints with GBs of space remaining.

There should be a way in a gui (there seems to be already possible with auisys.plx) to move the location of the Up2date files and working folders, so that update jobs don't fail with "no space remaining"

WebAdmin tab memory usage grows and grows until it crashes both in Chrome and Firefox.

There does not appear to be any way to view an active NAT translation table with connection states from the SG series web-interface.

Similar to pfSense "states table", would be very handy to see active NAT translations, with source IP / port, translated IP / port and destination IP / port.

Also good would be optional method to close some connections from the web-interface.

The column widths in the Central interface are fixed. This does not make sense and makes many items in the Alerts and RCA sections unreadable. The user should always be able to adjust all column widths.

This should also be true for the Central Endpoint client. It makes no sense that the window is a fixed size that can not be expanded or maximized and that the columns cannot be adjusted. I cannot read most of the lines on my system which severely limits the usefulness of the log.

i want to turn the user portal off for security and to stop users downloading vpn software to any computer - but if OTP is enabled i get 'OTP users cannot access auto-created tokens in user portal' - so my work around it to turn off auto generate OTP then turn off the portal but this makes it hard to turn back on

i want to be able to turn the user portal off no matter what

exactly that " speed test on dashboard " and also a test like "namebench" in dashboard or in Network Services

SG series firewall having a good desk-board where we can see all WAN's, LAN's and VLAN's live traffic and bandwidth monitoring and also monitoring usage of bandwidth of individual users. ( We are using ASG220 since last 6 years).
After upgrade to XG series firewall with firmware version SFOS 16, GUI is totally different and very difficult to troubleshooting of monitoring of live bandwidth usage of VLAN. There is no way to monitor live VLAN traffic in XG firewall.

I'm not a fan of using non-standard port numbers for protocols. Whilst you can reconfigure the Admin Console to use the standard HTTPS port of 443, it then prevents you from being able to use the User Portal (unless I've missed something!)

I'd like to be able to connect to the admin interface with one address (e.g.: https://fw-admin.domain.net) and the user portal with another (e.g.: https://portal.domain.net)