SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. WebAdmin: Packet Filter Group Editing

    Allow the adjustment/editing of the packet filter groups. Currently it is not possible to edit/change the color, edit the name, delete a group, and otherwise work with this feature.. Allows more polish of this area by completing the abilities, allowing for better management of pf rules as a result of having better group customization.

    18 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    6 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. Network Security: User-Customizable Packet Filter Rules

    My dedicated and colocation customers are constantly asking me to block or unblock this port, or that port. If I could only allow him to log in and manage is own rules for his one or two IP addresses (or range), that would really be awesome!

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. AstaroOS: Warn about using reserved ports

    I recently found out the hard way that the RED devices use Port 3400. However when I enter that port in Network Security the Astaro didn't know it was in use already by the RED management.

    I recommend that the OS be updated to warn when reserved ports are being used.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. Network Protection: Bind VoIP Proxy to Interface

    It would be useful if the VoIP proxy was able to be assigned to a particular interface. If I have an internal VoIP server, it may not be on the same address as my default gateway, so it would be useful to assign another gateway interface instead of using policy based routing.

    18 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. Networking: Exceptions for Country Blocking to Disable Logging

    We use country blocking a lot and and see a ton of DNS blocks from country in packet filter.

    I would like to have a check box to enable or disable logging of this feature, once i enable and see it is working i don't need to see all these in the packet filter log anymore, but need to be able to turn back on if I am diagnosing something.

    11 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. WebAdmin: Group Colour Picker

    While creating Firewall rules and implementing Rulegroups it would be nice to choose a specific colour for each group.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. DHCP server Ping Ahead

    Ping ahead removes the problem of two devices getting the same IP address if one has a static address.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. Network Protection: Support checks to database servers attached to Web clusters

    When we use 'Server Load Balancing', we can do a http check on a URL.
    When the server is up, and for example the database behind it is down, the user get a message the site is not found (error 404), on this moment the loadbalancer don't switch to the other server. When the loadbalancer check only on returncode 200 for the given site, the user don't get an error message and will be switched to the other server.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. Network Security: Automatically add hosts to IPS Performance Tuning

    For example, a host entered in the 'Host list' on the 'Routing' tab of 'SMTP' should automatically be put into 'SMTP servers' on the 'Advanced' tab of IPS.

    A host used in a 'DNS request route' should automatically go into the 'DNS servers' box.

    On the 'Global' tab of IPS, don't allow an 'Interface (Network)' to be put into the 'Local networks' box if the interface is a DSL or modem type; at least warn that the admin should not put a public network into the box.

    Add Remote Gateways to the IM/P2P skiplist.

    Etc.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  1 comment  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. WebAdmin: Backup Separate Parts of Config for re-use (Eg. Firewall Rules or Definitions)

    I would like to export my packet filter rules and/or definitions (all or several) and import these to another astaro (same or different version). It will be usefull for all admins to get this rules in a shared web-database.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. Network Security: Per-User IP/Service Tracking

    It would be nice to see what each IP is doing in your network. Tracking the services each uses. Mainly for tracking hacking.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. Network Security: Per-Rule IPS Logging

    The ability to turn on detailed traffic logging for certain rules is a standard, and very useful feature of many IPS/IDS systems. This way the administrator can see the traffic (preferably in standard pcap format) that made a rule fire and decide if it is a false positive or a genuine attack. It is also a feature in snort, so it should not be very difficult to implement. The pcap files should be attached to the alert emails.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. Networking: Concurrent Connections Limiter

    At this time there is no possiblity to limit the external connections from the ASG to a specific IP/ server.

    At our production location we have to use an external party that has a very strict firewall. If more than lets say 100 connections originate from the same IP, this IP gets blocked.

    It would be nice if an option becomes available in the ASG.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. Network Security: Default new Packet Filter Rules to top

    When adding new Firewall Rules, make it so that I can set a preference that all new rules will be auto-placed at the top.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
1 2 6 7 8 10 Next →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.