When importing objects from AD Astaro does not differentiate between users and computers in AD. If I sync an OU that contains computers, they are imported as user accounts which doesn't make sense. Couldn't there be an option to import those computers into the network definitions as DNS hosts? This way it would be easier to create specific rules for PCs on the network without having to create all the definitions.

Astaro Command Center - Please Provide VMWare drivers and integration components for FUSION so Macintosh Users using VMWare can use this product. Currently you only support VMWare's esx and vsphere.

Please start publishing complete change logs for new firmware releases. It is ridiculous to have to hunt for hours in the forums to find some answers. Complete change logs are a must have feature for production use -- I need to know what was changed across versions to a) judge impact on prod b) be able to quickly diagnose issues arising after upgrade (happens all too frequently)

Allow a user to create and restore backup files that contain only parts of the configuration.. users would be able to selectivly make use of various parts of the configuration in other firewalls, allowing for easier rollout of multi-site locations. As well, they can restore only parts of a backup file that are required, thus allowing for faster recovery and without affecting all areas of the box.

UTM only supports automatic backups sent by email or to a UTM Manager repository.
It would be great to export them via SCP, FTP, Network Share like log files can.

It would be a good thing to have to possibilty to predefine e.g. firewall rules, vpn connections, clientless vpn connections, users or whatever and activate them at a special day and time.
For example a bunch of new emplyees start their work at 1st of march - so the admin can predefine their users, rules and remote connections for them to be active 8am at 1s of march.So he will not forget that things during the daily business at 1st of march.

It would be awesome to have alerts and notifications delivered via Growl (or Prowl for iOS). It's a much faster and more obvious way to manage alerts!

Please, provide a fixed grace period after the license expiration (5, 10 or more days).
This prevents to disable the features licensed if for any kind of reason the admin was not able to install the new license.

Currently you can place a backup file on a USB stick, name it to restore.abf, and it will be installed during boot up.

Please provide the feature to permit the upload of an encrypted configuration file (.ebf) during the boot of the firewall by prompting for the password during boot which is entered via console (or ideally perhaps the LCD??)

It should be possible to address notifications to different users or user groups.

For example:

IPS warning to user a@exmaple.com

Base system notifications to user b@example.com

Would be riskless, do an automated backup first !

Would like to have the possibility to control the accessibility of WebAdmin / User Portal Help, because right now it is accessible without a valid authentication.
I think the best way would be to get only access to the online help with a valid authentication and maybe also by a selection of allowed users/groups/etc..

There should be an option to define a Up2Date threshold time limit before installing a new pattern (instead of download intervall).

It would be very helpful if the backup comment (Management > Backup/Restore > Create backup > Comment (optional)) will be included in the subject when sending backup files via mail.

Current subject when sending a backup manually:
[<hostname>][INFO-010] Configuration Backup File

Suggestion:
[<hostname>][INFO-010] Configuration Backup File (<Comment that was entered while creating the backup>)

By scanning the local IP-space of connected/configured internal (non-gateway) interfaces, discovered IPs should be auto-added to the definitions list using their hostname as the title (if available) otherwise just fill in the IP for both the address and the name.

This saves admins having to define their objects from scratch, and they can always delete the object definitions they don't want/plan to use. This should be done either automatically, as part of the wizard, or on request.