SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. SSL VPN - Assign IP address via internal DHCP server

    When clients connect via the SSL Remote Access VPN, you should have the option to assign IP Addresses via an internal DHCP server and not only from the UTM Virtual IP Pool. This is currently available with PPTP and L2TP over IPsec but not with SSL VPN. Companies need to have more control over the IP addresses and leases assigned to clients that connect via the SSL VPN.

    11 votes
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • sso
    • facebook
    • google
      Password icon
      Signed in as (Sign out)

      We’ll send you updates on this idea

      2 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
    • Download Search Log Files

      277/5000
      The Search Log Files feature (Action, Time, URL, User) is very useful when using report format, but we were not able to download it.

      It would be very interesting to be able to download these searches, just as we can do in Logging & Reporting> Web Protection

      6 votes
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • sso
      • facebook
      • google
        Password icon
        Signed in as (Sign out)

        We’ll send you updates on this idea

        1 comment  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
      • Update SSL VPN to newest OpenVPN version.

        MacOS users with the newest version of Tunnelblick are starting to experience compatibility issues with the current OpenVPN version used by SSL VPN.

        25 votes
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • sso
        • facebook
        • google
          Password icon
          Signed in as (Sign out)

          We’ll send you updates on this idea

          2 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
        • top user report x interface Utilization

          Send the top user report via email when the interface utilization speed crosses the set threshold value

          4 votes
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • sso
          • facebook
          • google
            Password icon
            Signed in as (Sign out)

            We’ll send you updates on this idea

            0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
          • "Out Of Office" replies with BATV feature enabled

            With current exim configuration, the "Out Of Office" replies getting rejected by the BATV due to the null return address in the reply. Please add a feature to handle these messages pass through the BATV feature.

            1 vote
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • sso
            • facebook
            • google
              Password icon
              Signed in as (Sign out)

              We’ll send you updates on this idea

              1 comment  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
            • NBN Telstra

              As yet there is no support for MPoA which is the required protocol for VDSL2 on the NBN network. With ADSL fading out this seems to be an essential feature

              1 vote
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • sso
              • facebook
              • google
                Password icon
                Signed in as (Sign out)

                We’ll send you updates on this idea

                0 comments  ·  Networking  ·  Flag idea as inappropriate…  ·  Admin →
              • Certificate on the UTM

                Out-of-the-box Sophos UTM will generate self-signed certificates for many functions as for the Web proxy signing CA. We would like to use our internal PKI infrastructure consisting of an W2K16 Enterprise RootCA because it_s certificate is trusted automatically by all Windows clients in the domain so there is no need to distribute other certificates by GPO for e.g.

                For the webadmin console we used a certificate signed by this _Root_CA and that works without problem. Because we use SSL scanning we want the web proxy _Signing CA_ to be a intermediate CA of our RootCA. I have generated the certificate…

                1 vote
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • sso
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)

                  We’ll send you updates on this idea

                  0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
                • Let's Encrypt Wildcard Integration

                  Let's Encrypt Integration came with UTM 9.6. That's great!

                  You should now implement the support of Let's Encrypt Wilcard domains with ACMEv2.

                  Best Regards

                  1 vote
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • sso
                  • facebook
                  • google
                    Password icon
                    Signed in as (Sign out)

                    We’ll send you updates on this idea

                    0 comments  ·  Web Server Protection  ·  Flag idea as inappropriate…  ·  Admin →
                  • adding an option to remove users from UTM

                    i would like you to add an option to remove users from UTM after they get authenticated and synced from STAS to the UTM, sometimes even when you remove the user from the STAS it keep stuck in the UTM and then i have to restart the device to wipe all the users and start fresh, adding this option will ease the work

                    1 vote
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • sso
                    • facebook
                    • google
                      Password icon
                      Signed in as (Sign out)

                      We’ll send you updates on this idea

                      0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
                    • ADD DNSexit.com as dynDNS Provider

                      ADD DNSexit.com as dynDNS Provider
                      please add DNSexit.com as dynDNS Provider.
                      because they can host top domain name(yourdomain.com) for free.
                      or create own providers under dynDNS for any other profider.

                      thanks!

                      1 vote
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • sso
                      • facebook
                      • google
                        Password icon
                        Signed in as (Sign out)

                        We’ll send you updates on this idea

                        0 comments  ·  Networking  ·  Flag idea as inappropriate…  ·  Admin →
                      • DB cleanup after adjusting report retention time

                        It would be sweet if the SG would do a cleanup/purge of old data beyond reporting time.
                        Path: "logging & reporting --> reporting settings --> settings"

                        This is especially handy with the smaller devices with excessive logs and will prevent us from doing a REBUILD DB, with the loss of whole database.

                        (Example of reallife situation in CaseID [#8254771] )

                        50 votes
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • sso
                        • facebook
                        • google
                          Password icon
                          Signed in as (Sign out)

                          We’ll send you updates on this idea

                          0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
                        • WPA3 update for current products upon release

                          I hope that Sophos will update their current AP products to WPA3 and not only ship new hardware with a WPA3 certification and firmware. The release of WPA3 is planned for late 2018 and would be a great addition to existing hardware installations.

                          35 votes
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • sso
                          • facebook
                          • google
                            Password icon
                            Signed in as (Sign out)

                            We’ll send you updates on this idea

                            0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
                          • New Product: Network Switches for Sophos UTM and Sophos XG Firewall

                            It would be nice to be able to do the following with these switches:

                            Manage Every Port
                            -- Turn Ports On/Off
                            -- Assign Ports to Separate Zones And/Or VLANs
                            -- Collect Stats
                            SNMP Support For Third Party Monitoring
                            IGMP Snooping
                            Automatic VLAN Assignment (VLAN Assignment by time of day, port, VOIP)
                            Jumbo Frame Support
                            802.1X Authentication (so unauthorized devices such as laptops cannot be plugged in to my network lan ports, unless they are joined to our AD Domain)
                            SFP Ports (optional on some models, there should be no reason why somebody who doesn't need these should have to pay…

                            28 votes
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • sso
                            • facebook
                            • google
                              Password icon
                              Signed in as (Sign out)

                              We’ll send you updates on this idea

                              5 comments  ·  Flag idea as inappropriate…  ·  Admin →
                            • 26 votes
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • sso
                              • facebook
                              • google
                                Password icon
                                Signed in as (Sign out)

                                We’ll send you updates on this idea

                                5 comments  ·  Web Server Protection  ·  Flag idea as inappropriate…  ·  Admin →
                              • WAN Interface speed test

                                Being able to test WAN Interfaces by isolating from the network traffic temporarly. That would be very helpful to identify slow internet connection and causes.

                                6 votes
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • sso
                                • facebook
                                • google
                                  Password icon
                                  Signed in as (Sign out)

                                  We’ll send you updates on this idea

                                  0 comments  ·  Management  ·  Flag idea as inappropriate…  ·  Admin →
                                • We need real time bandwidth per ip or user base.

                                  We need real time bandwidth per ip or user base.

                                  13 votes
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • sso
                                  • facebook
                                  • google
                                    Password icon
                                    Signed in as (Sign out)

                                    We’ll send you updates on this idea

                                    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                                  • Wireguard VPN support

                                    I'd be nice if you would include WireGuard in your suite of server-side VPN protocols in your UTM line.

                                    5 votes
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • sso
                                    • facebook
                                    • google
                                      Password icon
                                      Signed in as (Sign out)

                                      We’ll send you updates on this idea

                                      1 comment  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
                                    • UEFI boot

                                      Make the ISO a standard UEFI ISO

                                      3 votes
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • sso
                                      • facebook
                                      • google
                                        Password icon
                                        Signed in as (Sign out)

                                        We’ll send you updates on this idea

                                        1 comment  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
                                      • DNS over TLS

                                        Please implement support for DNS over TLS queries to supported resolvers (like the new Quad9 resolvers). Very important privacy feature, imho.

                                        65 votes
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • sso
                                        • facebook
                                        • google
                                          Password icon
                                          Signed in as (Sign out)

                                          We’ll send you updates on this idea

                                          7 comments  ·  Networking  ·  Flag idea as inappropriate…  ·  Admin →
                                        • Editable notification subject for admin notifications

                                          Please make the admin notifications subject editable.

                                          Some service-systems can't handle the square brackets at the notification header.
                                          Customization for the design of this header would be helpfull in those cases.

                                          (btw. it would definitely help already, if there would be just one dropdown field, where you can change the square brackets into a normal bracket, a pipe or a simple slash).

                                          Thanks
                                          Felix

                                          10 votes
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • sso
                                          • facebook
                                          • google
                                            Password icon
                                            Signed in as (Sign out)

                                            We’ll send you updates on this idea

                                            0 comments  ·  Notifications  ·  Flag idea as inappropriate…  ·  Admin →
                                          ← Previous 1 3 4 5 175 176
                                          • Don't see your idea?

                                          Feedback and Knowledge Base

                                          icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-lightbulbCreated with Sketch.