SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Enable the admin to remove unused Website Tags in Web Filtering

    If one defines a website tag in the UTM for a collection of URLs, then later desires to fully delete the tag (the tags remain in the configuration db even if not assigned to any URLs), there is currently not a way to do this. I contacted support and they said this would be a feature request (seems like missing basic functionality to me).

    49 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    10 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. Huawei P8 Lite Fitbit Flex Connection 2

    Huawei P8 Lite Fitbit Flex Connection 2
    Hello
    A friend recently gave me her old bracelet Fitbit Flex 2. It is reset but we are unable to connect it to Bluetooth with my Huawei P8 Lite while we get there with other devices... Have you ever encountered this problem? Solutions?
    Thank you, everyone.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. editable, multi lanquege, custom block page

    Hi,
    Since a couple of months we working with you UTM product... and I love it.
    I have one missing point in the UTM.
    We are a dutch company with a lot of employees who have difficulty reading English reports or can not read them at all.
    It should help this users if the blockpage was displayed in there own lanquege.

    This can be achieved by providing blockpages multilingual (seems to me to be impossible for you), making them editable (everyone can store their own messages) or creating the option to make a link to a custom page for each…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. Autonomous quota consumption (no user confirmation)

    The new quota feature works great, but there is a big problem using quota on mobile devices. Having a media streaming quota configured you have to open a web browser and confirm the amount of time (quota) you want to use. That works fine on desktop, but on mobile IOS devices such requests in a browser gets redirect to a installed APP (You Tube) and you never have the chance to confirm the quota you want to use - as a consequence YouTube app does not have internet connectivity.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. Web Protection: Youtube and blocking specific categories

    Coming from another vendor one of the features I like/had was that I could block categories within YouTube. We are a School District that needs to access YouTube (YouTube for Education has limited content). It would be nice to setup a policy or rule to be able to block these YouTube Categories.

    Currently available categories are:
    • Film
    • Autos
    • Music
    • Animals
    • Sports
    • Shortmov
    • Travel
    • Games
    • Videoblog
    • People
    • Comedy
    • Entertainment
    • News
    • Howto
    • Education
    • Tech
    • Nonprofit
    • Movies
    • Moviesanimeanimation
    • Moviesactionadventure …

    157 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    6 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. upload bandwidth report

    Customer would like a report of upload bandwidth used so that they would be able to identify any possible data leakage if they can identify users that have high upload bandwidth usage.

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. Time based rules for traffic throttling or shaping

    It would be very helpful to have time-based rules for traffic throttling or shaping. For example, users at our office access Facebook and we don't want to block it - just make it less of a burden on our Internet connection.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. Disable option for users time to use for a site

    When you configure quota the user get a page for “Select how to your remaining time quota to use” I am missing the option to disable this.

    I want to get only get a message when the users use al of there quota.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. tagged websites in exceptions

    in the webfilter exceptions you can configure websites "tagged as", however this doesn't work.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. tag support parent proxy

    if there already tagged websites, it would be nice to support these tagged sites also in the parent proxy.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. Block via user agent

    Customer requesting to block traffic via user agent

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. when sending error messages to users who connect to a non-existing or forbidden HTTPS-site, send the full CA chain to the user/browser

    Reason: Google forces more and more websites to HTTPS by punishing HTTP-only sites with a bad search ranking. In such a case proxy SG only sends the auto generated certificate to the user, which results in an unclear and ugly certificate error message by the browser to the user. This can be prevented by creating a signing certificate in the internal PKI, where the proxy SG must send this signing certificate to the user. Creation of the signing certificate is out of your scope, but it will be an internal certificate, valid to the internal organization only. Sending this signing…

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. Proxy usage security problem + change the bad proxy design

    When using - Skip transparent mode destination hosts/nets
    with Allow HTTP/S traffic for listed hosts/nets checked, not only hosts which are in Allowed Networks can reach this destination hosts. So if you have a public WLAN which is not in the Allowed Networks Web Filtering, everyone in this Network can reach the destination hosts.

    The automatic Rule Allow HTTP/S traffic for listed hosts/nets should only allow the
    Hosts in Allowed Networks to solve this security problem.

    If you dont want to change this behavior please remove the Allow HTTP/S traffic for listed hosts/nets_ Feature for security reasons.

    General…

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. Custom block pages dependent on AD group membership

    When a website is blocked, display a custom webpage which is dependent on the AD user group membership of the user. This would allow, for instance, a member of an "Internet Banned" AD group to have a block page which tells them they are banned from accessing any website, instead of the current message which refers to the category of the website - eg when trying to get to google, blocked because Search Engines are banned.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  15. Add a "bytes out" field in http.log.

    A "bytes out" field in the http.log would help identify hosts that are sending a lot of data out of our company. This is important to know, regardless whether the data flow is intentional (e.g. malicious user) or unintentional (e.g. compromised host.)

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. Full URL Report by user or Source

    A report per user or source for the accessed URLs (Full URL) not just the accessed sites.
    And Example showing Reason behind this:
    Users can abuse the system advising they are using youtube for work related research while they actually streaming music videos or watching comedy stand ups.
    And since they have access to youtube, when we pull a report. it will show that the user has access the website but no details about the full URL, that point to the specific video he was watching.
    If we go from the web protection report, the information are already there which…

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  17. Edit maximum archive extraction size

    Beeing able to edit Maximum Archive file extraction size

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. Temporary whiltelist for web filtering with auto remove when site is re-categorised.

    When encountering a site that is incorrectly blocked by Web Filtering, place an entry in a temporary white-list (or just in the Allow These Websites list) to allow access. User then would submit a request back to Sophos to have the site looked at and re-classified.

    Once UTM detects the category change, send administrator an email and automatically remove it from the white-list.

    This helps reduce duplication where a site category may change but it is still white-listed.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  19. let us decide, if we want to block the Dropbox app or the Dropbox homepage

    Now automatically both features are blocked, but I just don't want the App on my system. I don't mind if the users use Dropbox via web page.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  20. web exception

    need a repository of web exceptions maintain by sophos (webprotection -> filtering options -> exceptions)

    sophos needs to maintain a database of them and i just pick the ones I want from a list - this could auto update or not (maybe an 'update rule from sophos database' button) - will save me trying to work them out

    if a page isn't working what happens usually is web protection is just turn off then back on - and that isn't good

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.