SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Add a "bytes out" field in http.log.

    A "bytes out" field in the http.log would help identify hosts that are sending a lot of data out of our company. This is important to know, regardless whether the data flow is intentional (e.g. malicious user) or unintentional (e.g. compromised host.)

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. Full URL Report by user or Source

    A report per user or source for the accessed URLs (Full URL) not just the accessed sites.
    And Example showing Reason behind this:
    Users can abuse the system advising they are using youtube for work related research while they actually streaming music videos or watching comedy stand ups.
    And since they have access to youtube, when we pull a report. it will show that the user has access the website but no details about the full URL, that point to the specific video he was watching.
    If we go from the web protection report, the information are already there which…

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. Edit maximum archive extraction size

    Beeing able to edit Maximum Archive file extraction size

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. Temporary whiltelist for web filtering with auto remove when site is re-categorised.

    When encountering a site that is incorrectly blocked by Web Filtering, place an entry in a temporary white-list (or just in the Allow These Websites list) to allow access. User then would submit a request back to Sophos to have the site looked at and re-classified.

    Once UTM detects the category change, send administrator an email and automatically remove it from the white-list.

    This helps reduce duplication where a site category may change but it is still white-listed.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. web exception

    need a repository of web exceptions maintain by sophos (webprotection -> filtering options -> exceptions)

    sophos needs to maintain a database of them and i just pick the ones I want from a list - this could auto update or not (maybe an 'update rule from sophos database' button) - will save me trying to work them out

    if a page isn't working what happens usually is web protection is just turn off then back on - and that isn't good

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. disassociate IP address with the username on browser mode in UTM

    Request to disassociate IP address with the username on browser mode in UTM instead of waiting for the authentication timeout.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. Parent Proxy sequence option

    Need sequence option for Parent Proxy (like a Firewall Rule - from first to last)
    Example:
    1. URL= www.test.org -> forwarding Parent Proxy ProxyA
    2. URL= *.test.org -> forwarding Parent Proxy ProxyB
    3. URL= *.*.org -> forwarding Parent Proxy ProxyC

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. Allow the usefulness of translate.google.com

    At present translate.google.com is categorised as Proxies and Translators and is blocked under the default group policy.
    We would like our users be able to use google translate to translate pages and text that are in other languages but without being able to use it to circumvent policy rules and get to blocked sites.

    24 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    10 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. WCCP support as a target of redirection

    Support redirection of web traffic TO the UTM, FROM a WCCP client device such as a Cisco Router or ASA. This feature already exists on the Sophos Web Appliance. Implementing this feature would allow customers with Cisco network gateways to redirect traffic to out-of-band UTMs for filtering.

    15 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. sophos xg web block page

    In the XG appliance, if a page is blocked, the user should be able to submit a request for access to the local administrator from the block page much like they can in the Sophos Web Appliance. The only submit I see in XG is for the ability to submit directly to Sophos.com. Our users are used to being able to submit directly to the local admin for quick review and reply.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. Expand Proxy Certificate validity (Signing CA)

    It would be helpful if the validity of the Signing CA (UTM self signing cert) could be expanded, e.g. 5 years. Not hardcoded like now, but with a meu point to decide individual how long the validity should be (maybe in years). This would be great :o)

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. Define web protection exception via mac addresses

    I have a number of clients that roam across my subnets. I would like to be able to define an exception for content filtering based on MAC Address Definitions.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. Block the use of IP address instead URL on browser.

    Users can bypass the webfilter using some websites IP addresses instead URL. SquidGuard already have this feature, I suggest the Sophos team develop this funcionality cause when DNS can't resolve the addresses webfilter is bypassed. My Best regards.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. URL Rewrite

    I'd like to be able to re-write the URL of outbound http/s requests, to add/remove something from the URL when a LAN user is browsing the Internet.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  15. Add option “Inactive + 2 Months” Devices under Computers dropdowns categories.

    For example Under computers dropdowns categories we have option:
    Show all computers, computers without a user, Mac computers etc...
    Can we also add option "Inactive + 2 Months" devices so we can select those devices in one click and if we need to delete them.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. Allow The URL lookups for blocking and allowing sites to use Sophos Database.

    Allow us to change the URL lookups from McAfee poor database that get everything wrong to the Sophos Database as this seems to be correct with the WSA product lines. The McAfee lookup system seems to get things wrong. we request websites to Sophos to change and even after weeks they are still classed wrong. But they are all correct if you use the Sophos Web Appliance or end point lookups.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  17. Web Protection: Meaningful error messages

    UTM Web Protection now blocks TLS 1.0 traffic (when HTTPS inspection is enabled), However, when a connection is blocked because a server only supports TLS 1.0, the user receives a block message with the vague reason code "Input/Output error". I had to open a support case (and wait for it to be researched) to learn that this meant a protocol incompatibility between UTM and the server.

    I tried to convince the technician that meaningless or misleading error messages should be considered as bugs, but he insisted that it had to be filed as a feature request. I am firmly of…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. Web Protection: URL Policies based on browser, device, application (user-agent)

    Our customer has a lot of special devices e.g. ipad, iphones and surface pad. Only these devices should access certain applications eg itunes.

    Right now there is no adequate way to realise this requirement unless you implement user-agent based authentication.

    Also some customers would like to block traffic coming from certain browsers, or certain browser versions.

    37 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    14 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  19. Web Protection: Block Files Upload in Webmail

    I would like to be able to block the upload of file to webmail using Web Filtering.

    Ideally, we should permit users to open a webmail (like gmail.com or other public webmail) but i don't want to permit to attach file/upload file in a new mail on the webmail. In this way i can block a possible disclosure of corporate data. Thanks

    34 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  20. block streaming media but allow a particular video from those websites

    we would like to have the category streaming media blocked but a the same time have a certain or a particular video link allowed. best example block www.youtube.com but allow just a video link from www.youtube.com. thanks.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.