SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Framework: IPV6 Support

    Add support for IPV6 to allow Astaro to be used in networks of the future.. As IPv4 is phased out over time, more networks will adopt IPV6, especially governments and bigger business, and will require AxG to support them.

    90 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    8 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
  2. Multicast Routing

    Add Dynamic Multicast Routing PIM-SM support

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Networking  ·  Flag idea as inappropriate…  ·  Admin →
  3. MailSecurity: Identify attached file type by file header

    I would like to block file types like executable's, audio-, video- and office-files not only by file extension, but also by real file type. Blocking file extensions can easily be circumvented.

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Completed  ·  Gert Hansen responded

    we have added this feature in 7.300, since than the mail content filter will identify the file and mime type not only by the server response, but by actually looking into the file and check the magic string.

  4. 36 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Completed  ·  14 comments  ·  Networking  ·  Flag idea as inappropriate…  ·  Admin →
  5. WebAdmin: Enhance Lists Widget

    We need to make improvements to the Widget tool which allows you to enter and maintain white and blacklist entries. Currently they are quite unwieldy if you have lots of entries. We should be able to sort, delete all, and otherwise scale this part of WebAdmin.

    For example, the email addresses in the SMTP whitelist and blacklist list boxes need to be searchable so you can see if something is already in it.

    45 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    8 comments  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
  6. Reporting: Traffic Monitor weekly/monthly

    Extend the weekly/monthly report with the maximum used bandwidth in the time period. At the moment there is only a calculation of intervals. I faced the problem on reports to my customers, that on the daily report the bandwidth used was 50MBit outbound and on the weekly/monthly it was only 5MBit -- so i had to report the peaks on the monitored Eth interface separately -- to satisfy my customers and have the right used bandwidth by that interface.

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
    Completed  ·  Angelo Comazzetto responded

    The executive report shows a value for “maximum” for all interface statistics. Enjoy.

  7. VPN: DNS and WINS

    Several of the VPN types do not support pushing DNS and WINS information to the client systems. This should be implemented for all VPN types.

    48 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    6 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  8. Mail Security: SSL Prefetch Support for POP3

    At the moment Gmail and other accounts that use port 995 to connect (POP) can't be scanned via prefetch. Please add support for SSL POP / or configurable prefetch ports.

    51 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    9 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. User-Only Proxy

    Allow proxy to be based purely on users/groups without including IP network segment. Most network uses DHCP which make it difficult at times to specify a segment

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Completed  ·  Gert Hansen responded

    If you want to include all ip adresses from a network you can add the whole network you run dhcp on or even any and only allow access based on user/group information.
    This is already possible with the current version.
    Therefore i will close this request.

  10. Keep Packet Filter Rule numbering when using Filter / Search

    Using the SEARCH in Packet Filter or NAT Rules does not keep the actual Rule numbers of the complete list. This makes it hard to find the actual position of the rules

    31 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. AstaroOS: CPU Power saving features

    Implement CPU power-saving features...

    25 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    6 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
  12. WebAdmin: Confirm Deletion of Objects

    Add a confirmation box for deletion of objects/users etc..Prevents accidentally removing an object and its associated configuration by a mis-click.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
  13. WebSecurity: Transparent Proxy with Authentication

    With the use of a popup or block-page portal, it should be possible to provide credentials and surf authenticated through the proxy, without doing any browser changes at all.. Allows for installations, such as "stadiums" to provide user accounts to their proxy without having to do instructions and deal with browser config changes.

    52 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    7 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Completed  ·  Gert Hansen responded

    This request has been implemented and is included in the 7.500 beta version released today. we are very interested in your feedback. Please check it out and post your feedback at http://www.astaro.org

  14. WebSecurity: URL Rewriting (Safe Search Enforcement)

    Give the feature to the HTTP proxy which enables URL rewriting. This would then make such functions as enforcing the google safesearch (ie any time images.google.com is added, append the "&safe=active" to the URL to auto enforce the safe search).. Provides features that our competition has, and allows for creative implementation and enforcement of the security policy.

    43 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    11 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  15. Authentication: Proxy.pac Auto-Configure Support/Export

    It would be very helpful if we could help users auto-config their browser settings for AD/edirectory authorization. A few of our competitors use some type of client that loads on a server or the machine that auto configs the browser settings so a user doesn't have to. I realize this can be done via AD group policy, or manually but to the uneducated it appears to be a limitation of our product. I tell them to use a proxy.pac to auto config the settings which is great since it also falls back to direct connection if a user takes a…

    45 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. Add Outlook plug-in for blacklisting

    A plug-in should be created fou Outlook to easiily add spam addresses to the SMTP blacklist.

    29 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Completed  ·  Angelo Comazzetto responded

    While not delivered as a plugin, per-user SMTP Blacklist support was added in 8.000. Users can now maintain their own blacklists via the UserPortal. If this doesn’t satisfy your needs, feel free to recreate this request. I will close it since many find this the solution they want, since then not just Outlook is supported.

  17. Mail Security: Import / Export URL Whilelist and blacklist

    User requires that he has other brand url filtering system and would like to migrate to Astaro but don't want to input a single entry only at a time.

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Completed  ·  1 comment  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. Web Security: image scanning

    Add an image scanner to filter out pornographic images.

    25 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Completed  ·  6 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  19. SSL VPN: Distribution for SSL VPN Configurations

    By email & direct administrator download, allow the distribution of client SSL VPN packages without having the user needing to go to the portal and get it themselves. For example, the admin can say "Send Angelo his SSL VPN backup" via email, or click a button to download his config which he then gives them via usb key or other method.

    Allows for easier rollouts of SSL VPN to large amounts of users by blasting out the configuration or making it so the admin can get them and distribute accordingly.

    30 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    9 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  20. WebSecurity: HTTPS Exceptions

    With the HTTPS filtering active, it should be possible to extend the exceptions feature to allow for the skipping of HTTPS scanning for destination sites and/or user/ip source objects, in order to avoid problems with sites that do not play well with this type of interception, or to meet user demands.. Allows easier adoption and use of the HTTPS scanning, and allows it to work with more envirnments and configurations without issue.

    33 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.