SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Two factor auth with L2TP and Radius - Does not show in ‘online users’ on the dashboard.

    Two factor auth with L2TP and Radius. Does not show in ‘online users’ on the dashboard.

    The only place they can been seen is Configuration > Logging & Reporting > Remote Access

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Logging  ·  Flag idea as inappropriate…  ·  Admin →
  2. It is possible to implement the configuration download in notepad how we can do in Cisco devices?

    It is possible to implement the configuration download in notepad how we can do in Cisco devices? So it will be very useful to know the setup if any new person manage the device.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Logging  ·  Flag idea as inappropriate…  ·  Admin →
  3. ipfix template issue

    Hi,
    There was a request/post in regards to getting IPFIX to be connected to Solarwinds, https://www.astaro.org/gateway-products/management-networking-logging-reporting/50338-ipfix-error-solarwinds.html

    Could this issue be addressed, we would like to use their product but the template is being rejected. Since the UTM does not support other netflow options, this should be addressed because the majority of firewall companies have these options.

    5 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Logging  ·  Flag idea as inappropriate…  ·  Admin →
  4. search

    When displaying the results of a search of a log file, display the search terms used in the popped up window.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Logging  ·  Flag idea as inappropriate…  ·  Admin →
  5. log filtering aprovement

    When I look in a live webfiltering log and filter this log on "action="block"" I like to see only log rules of blocked connection and not the first 10-20 rules with all log rules at every reload of the filter.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Logging  ·  Flag idea as inappropriate…  ·  Admin →
  6. Unified logging

    Compared to MS Threat Management Gateway 2010, analyzing log files on UTM is a chore. TMG had several advantages:


    1. Unified firewall, waf and proxy logs.

    2. Logs were store in a single file or an internal/external SQL database

    3. The interface for analyzing log data was capable of easily creating very complex queries with point and click.

    4. Logging was on by default.

    5. Data was broken into columns automatically, did not require parsing a very long text string.

    6. Easily exported to Excel for further analysis

    I would like to see some of this implemented in UTM. Viewing text files on the Sophos is…

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Logging  ·  Flag idea as inappropriate…  ·  Admin →
  7. Ability to choose syslog severity

    I cannot believe this is not possible it is a standard feature of most networking/security products.

    The ability to define what level of severity you want output to your syslog server. Currently its either ALL or NOTHING. When running log correlation you do not want the syslog server filled up with noise.

    RFC 5424 defines the ability to set severity levels, can this be implemented ASAP along with any other logging improvements.

    Thank you

    3 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Logging  ·  Flag idea as inappropriate…  ·  Admin →
  8. Logging Authentication failure in Webfiltering

    It would be good if you could write the failed authentications in the web filtering log.
    It could be used to determine which client someone logs wrong.

    Example: 2015:02:18-07:20:04 deproxy03-1 httpproxy[6423]: id="0001"
    severity="info" sys="SecureWeb" sub="http"
    name="http access" action="Authentication
    failed" method="GET" srcip="10.68.20.171"
    dstip="62.159.74.50" user="userx" addomain="domainx"
    statuscode="200" cached="0" profile="REF
    HttProSsoad
    (SSO-AD)"

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Logging  ·  Flag idea as inappropriate…  ·  Admin →
  9. Logging: Anonymization of the original data

    The Anonymizationtool anonymized only the webreports not the original data (Livelog etc.)

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Logging  ·  Flag idea as inappropriate…  ·  Admin →
  10. Use SUM as Log Server/Archive

    It would be very helpful if I could use a SUM Server as Remote Log File Archive. With this feature I could centralize all Logs of all my UMT's. A addon feature to search in e.g. Webfilter Logs of multiple UTM's at the same time would also be very nice!
    And if I do complex searches or log files are very big, the load will move away from productive UTM's.

    Thanks in advance,
    Pascal

    22 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Logging  ·  Flag idea as inappropriate…  ·  Admin →
  11. TLS (SSL) Encrypting remote syslog

    Hi please implement TLS (SSL) Encrypting for remote syslog.
    It is an important feature to send encrypted syslog messages to the remote syslog server: http://www.rsyslog.com/doc/rsyslog_tls.html
    A Cisco ASA, Synology NAS and Linux supports this feature. Please implement this also into your great UTM Firewall !!

    15 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Logging  ·  Flag idea as inappropriate…  ·  Admin →
  12. remote syslog log selection

    When new logging types are released by Sophos (e.g. restd) they have to be manually enabled in Logging and Reporting > Remote Syslog Server > Remote Syslog Log Selection even if Select all was previously utilized. Instead, it would be great if Select all was persistent instead of a single-use toggle and those log types were then automatically sent to the remote syslog server upon update.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Logging  ·  Flag idea as inappropriate…  ·  Admin →
  13. Output option based on status cord

    We use HTTP proxy AD SSO. When AD SSO is used, httplog is filled with lots of status cord 407. We're pestered with increase of I/O caused by output of status cord 407.

    Because it's AD SSO, it's no doubt to request authentication. It's meaningless to output this in log intentionally. We don't want to output status code 407. So we propose addition of log output option by a status cord.

    3 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Logging  ·  Flag idea as inappropriate…  ·  Admin →
  14. ipv6 mail manager

    Make it possible to search for IPv6 in mail manager

    3 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Logging  ·  Flag idea as inappropriate…  ·  Admin →
  15. Logging: show crypto session characteristics

    It is desirable to know the crypto characteristics of SSL/TLS sessions (services WAF, Web Protection, even SMTP). I am looking to know the cipher suite or its components: SSL/TLS protocol version, cipher used, MAC used, PFS group, etc). For planning purposes, it would be valuable to know which ciphersuites are in use, so that older ones such as TLS1.0 can be dropped when they are no longer needed. For forensic purposes, it becomes important if we ever need to investigate whether a successful downgrade attack has occurred.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Logging  ·  Flag idea as inappropriate…  ·  Admin →
  16. User Session Page

    User can see their Session time in browser pop-up page. That pop-up page can not close without logout. (In current setting there is no logout page ones browser is closed)

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Logging  ·  Flag idea as inappropriate…  ·  Admin →
  17. Live User List with admin can logout the session.

    Admin can see live user list and also can logout user session

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Logging  ·  Flag idea as inappropriate…  ·  Admin →
  18. Bigger ChangeLog for Webadmin

    Some of our Customers would like to have a more detailed Changelog in the Webadmin. The 20 etnries are not enough. A seperate Log for the Webadmin would be appreciated.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Logging  ·  Flag idea as inappropriate…  ·  Admin →
  19. Number of logs to display per page in Log Viewer

    Number of logs to display per page in Log Viewer. As earlier in cyberoam

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Logging  ·  Flag idea as inappropriate…  ·  Admin →
  20. Loggin and debugging interface

    Hi!

    As meny of your costumers surely do - I come from a TMG/ISA Server environment.

    In TMG/ISA we are used to a very user friendly and well working loggin/debugging interface.

    We have the ability to view live logs and apply filters to the log-stream.

    In Sophos UTM9 there is also a "Filtering" option but I'm missing the possibility to filter in detail. f.ex.

    I would like to be able to apply a filter that shows only packages going from one IP to another or from one IP with specifik type of traffic og maybe even a combination of different…

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Logging  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.