SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Web Warn Action - prompt on every visit

    I really like the new Warn action introduced in 9.2. However I think it would be great if there was an option to be able to warn the user on every visit to a site.

    A working example is we want to warn users when accessing cloud storage sites. It will display a custom disclaimer written by our compliance team telling them what they can and can't do on the site if they proceed.

    Currently it warns the user on the first visit only and never again. Should the user go against what is in disclaimer, they could claim they…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. disassociate IP address with the username on browser mode in UTM

    Request to disassociate IP address with the username on browser mode in UTM instead of waiting for the authentication timeout.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. url bypass for file extension blocking

    currently url bypass is only working for category or url-filter blocks. This should be available for file extension blocking too!

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. Parent Proxy sequence option

    Need sequence option for Parent Proxy (like a Firewall Rule - from first to last)
    Example:
    1. URL= www.test.org -> forwarding Parent Proxy ProxyA
    2. URL= .test.org -> forwarding Parent Proxy ProxyB
    3. URL=
    .*.org -> forwarding Parent Proxy ProxyC

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. Allow the usefulness of translate.google.com

    At present translate.google.com is categorised as Proxies and Translators and is blocked under the default group policy.
    We would like our users be able to use google translate to translate pages and text that are in other languages but without being able to use it to circumvent policy rules and get to blocked sites.

    25 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    10 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. WCCP support as a target of redirection

    Support redirection of web traffic TO the UTM, FROM a WCCP client device such as a Cisco Router or ASA. This feature already exists on the Sophos Web Appliance. Implementing this feature would allow customers with Cisco network gateways to redirect traffic to out-of-band UTMs for filtering.

    15 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. sophos xg web block page

    In the XG appliance, if a page is blocked, the user should be able to submit a request for access to the local administrator from the block page much like they can in the Sophos Web Appliance. The only submit I see in XG is for the ability to submit directly to Sophos.com. Our users are used to being able to submit directly to the local admin for quick review and reply.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. Expand Proxy Certificate validity (Signing CA)

    It would be helpful if the validity of the Signing CA (UTM self signing cert) could be expanded, e.g. 5 years. Not hardcoded like now, but with a meu point to decide individual how long the validity should be (maybe in years). This would be great :o)

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. Define web protection exception via mac addresses

    I have a number of clients that roam across my subnets. I would like to be able to define an exception for content filtering based on MAC Address Definitions.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. Block the use of IP address instead URL on browser.

    Users can bypass the webfilter using some websites IP addresses instead URL. SquidGuard already have this feature, I suggest the Sophos team develop this funcionality cause when DNS can't resolve the addresses webfilter is bypassed. My Best regards.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. Proxy profile firewall rules

    We need to be able to use firewall rules to prevent access between networks, however the rules do not apply to HTTP traffic when using transparent proxy.

    Can you add on the functionality to either:
    A )Have a http proxy profiles as a definition which can be used within a firewall rules / routing e.t.c.

    B) Be able to add firewall rules against a proxy profile.

    Thank-you

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. Add option “Inactive + 2 Months” Devices under Computers dropdowns categories.

    For example Under computers dropdowns categories we have option:
    Show all computers, computers without a user, Mac computers etc...
    Can we also add option "Inactive + 2 Months" devices so we can select those devices in one click and if we need to delete them.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. Allow The URL lookups for blocking and allowing sites to use Sophos Database.

    Allow us to change the URL lookups from McAfee poor database that get everything wrong to the Sophos Database as this seems to be correct with the WSA product lines. The McAfee lookup system seems to get things wrong. we request websites to Sophos to change and even after weeks they are still classed wrong. But they are all correct if you use the Sophos Web Appliance or end point lookups.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. Web Protection: Enhance Block Override feature capabilities

    Currently, the block override doesn't allow override of file extension blocks, as well as others, but it would be useful to optionally allow more granular control over where it does and does not work. For example:

    >> Allow file extension or MIME type blocking
    >> Allow files larger than the maximum download size
    >> Prohibit some content categories from being overridden. For example, "Job Search" is blocked but can be overriden, but Nudity is blocked and cannot be overridden.

    --- Original Request ---
    There should be a button, when extension blocking blocked a file, that admins can click on and…

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  15. Web Protection: Meaningful error messages

    UTM Web Protection now blocks TLS 1.0 traffic (when HTTPS inspection is enabled), However, when a connection is blocked because a server only supports TLS 1.0, the user receives a block message with the vague reason code "Input/Output error". I had to open a support case (and wait for it to be researched) to learn that this meant a protocol incompatibility between UTM and the server.

    I tried to convince the technician that meaningless or misleading error messages should be considered as bugs, but he insisted that it had to be filed as a feature request. I am firmly of…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. Web Protection: URL Policies based on browser, device, application (user-agent)

    Our customer has a lot of special devices e.g. ipad, iphones and surface pad. Only these devices should access certain applications eg itunes.

    Right now there is no adequate way to realise this requirement unless you implement user-agent based authentication.

    Also some customers would like to block traffic coming from certain browsers, or certain browser versions.

    38 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    14 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  17. Web Protection: Block Files Upload in Webmail

    I would like to be able to block the upload of file to webmail using Web Filtering.

    Ideally, we should permit users to open a webmail (like gmail.com or other public webmail) but i don't want to permit to attach file/upload file in a new mail on the webmail. In this way i can block a possible disclosure of corporate data. Thanks

    34 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. block streaming media but allow a particular video from those websites

    we would like to have the category streaming media blocked but a the same time have a certain or a particular video link allowed. best example block www.youtube.com but allow just a video link from www.youtube.com. thanks.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  19. Provide functional bundle lists for enabling or disabling

    Provide functional bundle lists for enabling or disabling, for things such as Google Android services, Apple cloud services (iTunes, iPad, whatever), Office365 synchronization services, etc.

    This could save some big headaches and research time in hunting down all the servers that need to be whitelisted for customer networks where these devices are used.

    And these lists could be updated with the other definitions.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  20. Opera VPN Application

    Dear Sophos Support Team , Hope you can prevent Opera VPN application from connecting and bypass web protection of Sophos UTM

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.