SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Block the UltraSurf Proxy

    A lot of users are using the UltraSurf Proxy to bypass the the Network proxy and access the blocked sites like youtube and facebook and ***** websites.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  2. Better classification of categories for AFC

    Currently about 50%of our traffic is being classified as 'Unclassified' please can more traffic be recognised. Especially proxy and VPN traffic such as Browsec.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  3. Have the option in SMC 5 to allow application installs on Windows Phones using .xap files without the need for a MS Live account

    In SMC 4 there is currently no functionality to allow admins to push applications to Windows 8.1 managed mobile devices via .xap files. You can push them out using the relevant URL from the Windows Store but this means you need to use a Microsoft Live account on the phone. We are in the process of rolling out 200+ Windows Phones and we would like to avoid the headache of having to separately manage all of those additional MS Live accounts for each device.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  4. CelleBrite

    This is used for moving cellphone data from one phone to another. It needs to be added to the montored list to ensure we can use this without problem. Currently the androidlib.dll is removed by Sophos so we are not able to use the product

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  5. 1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  6. Combine Application Control and Packetfilter Rulebase

    Please combine the rulebases for packet filtering and application control. So that application control would just be an additional option to a packet filtering rule.

    This would make it much easier to configure packet filtering and application control in a consistent manner.

    The following request would be obsolated by this approach, because it would be an "any/any-allow" rule with application filtering enabled: http://feature.astaro.com/forums/17359-utm-formerly-asg-feature-requests/suggestions/3457198-application-control-ability-to-allow-applications

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  7. Encryption free zones / APT detection

    It would be nice (not sure if technically possible) if there was the ability to detect and block known encryption techniques on the local LAN.

    Discussed here http://searchsecurity.techtarget.com/tip/Using-crypto-free-zones-to-thwart-advanced-attacks

    Advisories use encrypted tunnels to communicate with C&C servers. The blocking/Alerting of any kind of none white-listed encryption would help prevent C&C communication and signify infection.

    Any device requiring encryption would need to be white listed, other connections (like web browsing) would need to be performed by the UTM.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  8. Route All traffic from Endpoint to UTM Proxy (like TMG agent)

    At this moment (UTM 9.2), Sophos Authentication Agent have only one function - map IP and User.

    But TMG customers like to use a TMG agent, which can route all outbound traffic from host (not only http/s) to TMG proxy.

    If we will have such functionality, this will allow us:
    - have all traffic on UTM from host (even UTM not as Default GW).
    - use this agent for Terminal servers (separate different users by ranges of ports).

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  9. Command & Control summary

    Need log of bottom percentage of traffic to evaluate its potential as C&C residing on the network.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  10. Move the DELETE icon away from Deliver and Refresh.

    Here is a great idea... Move the DELETE icon away from Deliver and Refresh. If your not paying any attention you could deliver the spam. Also it would be nice to have a Delete ALL icon to save time from going from page to page to delete.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  11. Add Teamviewer portable to application control

    Add Teamviewer portable to application control

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  12. Add the ability to limit number of hours on a application or application group

    The ever increasing demand for our users to have access to you tube, social media or even gaming sites (during lunch hour, hopefully) creates an administrative burden and HR nightmare for many employers. I would suggest that having the ability to limit the number of hours spent by a user or dept on a weekly or monthly basis would be an invaluable tool. This way you can create what is deemed an acceptable number of hours based on a users organizational responsibilities and only have to monitor by exception. This would also be applicable in a home setting where a…

    9 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  13. Reporting: Extend Application Control reporting

    Would like to see more detailed reporting in the application control feature. It would be great if you could navigate around and click for info, save, and schedule reports like you can with the Web Reporting which is great.

    24 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  1 comment  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  14. Application Control: Terminate Individual Connections via Flow Monitor

    In the new 8.2x flow monitor, enhance it to allow blocking rule creation/connection termination or indepth analysis options for individual streams/flows/connections.

    25 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  15. Application Control

    Deskshare is missing

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  16. canonical.com updates application control for QoS

    limit ubuntu clients to have a upper limit of bandwidth when downloading updates from canonical.com. Right now DNS Group only resolves one ip address when using dns group canonical.com.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  17. App Control: Enforce control by specifying Network Ranges.

    It would be nice to be able to define a IP Network Range in the Application control. Rules can be configured in the Application Control to allow or block access to users in this IP Network range.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  18. Add Ultra Safe and IDM into the Application Control list

    Currently, we are performing a UTM 625 POC at Ministry of Culture of Thailand.
    They are requesting for additional applications to be controlled by the UTM.
    The applications are (1) Ultra Safe and (2) IDM or Internet Download Manager.
    Please kindly consider our request since this project is very large and we foresee a good fortune on this opportunity.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  19. allow IM, but disable file transfer and all other extra function. Add message that you're being monitored or ay other custom message in.

    allow IM, but allow fine tube control, such as disable file transfer and all other extra function. Add message that you're being monitored or any other custom message in chat window. allow logging of conversation. if they don't want to be logged, stop chatting.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  20. Add "Wetransfer" to Application Control > File Transfer

    I see many services under "application control" > "file transfer", 110 actually, but besides services like YouSendIt I miss Wetransfer.

    Can you please add it?

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.