Enable the new manual Sandstorm Upload for a select group of Users in the User Portal.

We would like to enable people who are the first point of contact, e.g. HR Department for job applications, to be able to scan suspicous documents and files for a thorough analysis.

"Auto-Firewall ist auf" Übersetzungsfehler in deutscher WebAdmin-Sprache, z.B. unter Fernzugriff -> SSL -> Profile, wenn ein Profil angelegt ist
LG

Hi,

the sophos support told me, to place my issue here.

Currently it is not possible to translate all web messages, e.g. the quota time limit page. I can translate only a part of it, which looks rather unprofessional to the enduser.

Thanks for reading.

Marcel Hoffmann

There's the API which you can use to GET and PUT and there is the Sophos UTM version 9.6 Beta manual Sandstorm file submission. Please extend the API so we can script the sandstorm file submissions.

https://ideas.sophos.com/forums/17359-sg-utm/suggestions/13393251-make-an-api-for-sandstorm-sample-submissions

It would be nice to have an traffic counter on every firewall rule that keeps track of how much data has been processed by a certain firewall rule. Sophos XG and other vendors have had this feature for very long which makes it easy for administrators to see which rules are unused or which rules are frequented very much.

WebAdmin tab memory usage grows and grows until it crashes both in Chrome and Firefox.

exactly that " speed test on dashboard " and also a test like "namebench" in dashboard or in Network Services

SG series firewall having a good desk-board where we can see all WAN's, LAN's and VLAN's live traffic and bandwidth monitoring and also monitoring usage of bandwidth of individual users. ( We are using ASG220 since last 6 years).
After upgrade to XG series firewall with firmware version SFOS 16, GUI is totally different and very difficult to troubleshooting of monitoring of live bandwidth usage of VLAN. There is no way to monitor live VLAN traffic in XG firewall.

I'm not a fan of using non-standard port numbers for protocols. Whilst you can reconfigure the Admin Console to use the standard HTTPS port of 443, it then prevents you from being able to use the User Portal (unless I've missed something!)

I'd like to be able to connect to the admin interface with one address (e.g.: https://fw-admin.domain.net) and the user portal with another (e.g.: https://portal.domain.net)

Admin can disable the user name change in the user portal;
Admin can disable the display of the security group;
SSL VPN page should not be visible to users who do not have access =.;
UserPortal with login integration Single-Sign-On;

This is very much needed in the tool, since it is a security tool should also have this internal security regarding users.

Please make it possible to send and get Sandstorm sample submissions using an API. Customers with valid sandstorm licenses for Sophos UTM or classic Sophos Appliances can then use scripts for other solutions to submit samples and retrieve results.

Another idea is to create a seperate license for this API usage. There can be many implementation possibilities for Sandstorm API scripting, sending samples and automating processess depending on the submission results.

At present, Fallback Language is available but it the capability to force the same language as the welcome text would provide a more consistent interface.

If having an administrator configured default language is not possible, maybe an option for the end user to change their own language setting. Many users comment that they are more comfortable with English terminology for things like mail quarantine etc through years of experience rather than translations that are sometimes too literal.

It would be very helpful to export the firewall rules in a readable,sortable and printable way, for example csv file.
If you have a big ruleset it is very tricky to get an overview to consolidate or sort the rules.
Furthermore you're not able to export the firewall rules to give it to other users, for example the rules for a special application.

Better option to translate Templates

Please see this www.astaro.org thread:
https://www.astaro.org/gateway-products/hardware-installation-up2date-licensing/51383-sophos-pcengines-apu-6.html#post286165

With 8000 views, there is a huge VGA blind but SERIAL aware user community. We would love a serial console (ttyS0) enabled installer image.

add the link
https://secure2.sophos.com/en-us/support/submit-a-sample.aspx
to the support section so makes it easier to submit a sample

because i submitted the sample to the wrong sophos webpage and sophos support never got the sample

We happened quite frequently to have an up2date failing, particularly when doing it in a Active/Passive UTM Cluster, because /var/up2date/sys is full.

It happens when gpg image is being uncompressed.

The most raging point is that there are many other mountpoints with GBs of space remaining.

There should be a way in a gui (there seems to be already possible with auisys.plx) to move the location of the Up2date files and working folders, so that update jobs don't fail with "no space remaining"

There does not appear to be any way to view an active NAT translation table with connection states from the SG series web-interface.

Similar to pfSense "states table", would be very handy to see active NAT translations, with source IP / port, translated IP / port and destination IP / port.

Also good would be optional method to close some connections from the web-interface.

I have over 3500 IP addresses I need to add into my network definitions. I need to add them all to firewall definitions. It would save me so much work if I could just import these IP addresses as a CSV into a bunch of network definitions.

It would be even more advantageous if I could import the IP addresses to network definitions and have them all automatically go into a network group.