Have UTM 9 ready to deploy as an Azure Image from the Azure marketplace.

Emails that have blank "To:" field should be filtered.

Since V9.6, the SMTP Proxy listen interface feature is reality. It would be nice if the configured listen interface not include automaticaly also the additional addresses of the selected interface. This is bad for security audits.

Thank you very much.

Multi-path rules works nice but we don't see at the very moment which connection is used. Maybe "Skip rule on interface error" made the connection to switch to the another interface but we can't see it.
Not sure if connection backs to normal after error rectified by itself or not.

I need alert email in case my Internet Bandwidth threshold reached for at least for 5 Minutes , So proactive actions can be taken , it is not possible to put your eyes every time at firewall bandwidth utilization , or raising escalation by customers

Please implement Google secure LDAP client (with cert).
We have to install a LDAP proxy like sTunnel to connect to Google secure LDAP for user authentication in UTM. This could be avoided.

Hello, One way to automatically extend the usage time for Wi-Fi before a holiday in a week would be a great thing. On working days, the WLAN is set to 22 clock, on weekends until 24 clock. Please extend the possibility that the UTM can automatically be extended before local, regional holidays.

Hi Team, I would like to have the ability to Export Network Usage between specific times. Unfortunately the Daily Network Usage graph is (now-24hours).I would like the ability to choose a specific day last week.

It would be great to be able to customize the Country blocking template as with all other user facing pages.

Currently, even if an email fails DKIM verification it is delivered. There should be, at the very least, an option to quarantine emails that aren't successfully verified. Also see https://community.sophos.com/products/unified-threat-management/f/mail-protection-smtp-pop3-antispam-and-antivirus/112950/dkim-verification/.

When trying to add a parameter with a question mark on a URL to redirect to the following error occurs:

"Please remove the following invalid characters in the target path: ?"

Support have said this is a system limitation and it is a good candidate for a feature request.

Currently not available for reporting on the iView, we have a small number of NAT rules and would be great to have this usage report available under the reporting server.

Executive Reports of top Ten include packets which are dropped by the UTM. Since the goal of network admins is to detect unauthorized traffic which penetrates the firewall, Executive Reports which include dropped packets are a waste of time. For every item, the admin is forced to download the appropriate firewall log file and see of the IP address in question is included in the list of drops. This is a great waste of time. If you do not fix this, our company will be forced to find an alternative solution.

As of 9.601-5 the UDP port for IPFIX flow export is hard coded at 4739. Please consider making this a configurable port number! We are trying to incorporate flow from UTM into an existing monitoring tool listening for flow data on a different port. My choice now is either no flow data at all from UTM, or reconfigure all our other devices and monitoring software to use the sophos hard coded port.

Firmware version: 9.601-5

unscannable / encrypted content and file Extension filtering is quarantine only unfortunately.
Please add an option to bounce emails by file extension (e.g. bounce old office formats like .doc, .xls etc.) and to bounce unscannable / encrypted content.

Hi,

Add this feature in Cyberom UTM to Allow work space Facebook and block personal Facebook.

The Device monitor has:
- Conn. to Central Mgmt
- Gateway Status
- Interface Status
- RED Status

First of all, none of our clients need RED, but almost all of them have S2S VPN. Can you add a way to pick what bits to monitor on the Device Monitor and allow me to decide what to display in the NOC?

Thanks!