SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Create Sophos Splunk App for UTM

    Create a Sophos UTM Splunk App like other firewall vendors (i.e. checkpoint, cisco) but integrate IDS, AV features. Include pre-defined dashboards that show firewall denies, IDS blocks, Anti-Virus actions etc...

    9 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. dynamic DNS

    We know that bad actors like to churn their DNS information to prevent categorization services like UTM / TrustedSource. This was confirmed recently when I read research showing that DNS hosts on dynamic DNS have a disproportionately high incidence of malware. I cannot envision that our users ever need to visit a dynamic-dns FQDN for purposes essential to our business, so I would like the ability to block them. In my view, if an entity cannot afford a static IP for their services, they are not big enough to be a partner to us. If implemented, this might be an…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. deploy IPS exception from SUM

    I suggest you to be able to deploy IPS exceptions from SUM (as we can do with ATP)

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. Sophos Firewall: Probing of PSK into VPN IPsec tunnel for each Gateway by Respond only

    Make it possible to have for each IPSEC Remote Gateway its own PSK if mode is on respond only with same endpoint details

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. Block psiphon proxy latest version (other vendors already blocked it)

    Need to block this ASAP as UTM is useless when it is bypassed by this software

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. Block client connection without Sophos Endpoint Protection

    We got a Problem right now in our Network. With several "boot disks" it is possibe to Change the local admin user account or get Access to the registry and disable sophos endpoint protection. One of our employee did it. One of These who thinks he can do what he wants and he is the best, but it's another Story ;)

    Everything was blocked by device control allready, but it works only when the Workstation is up. While booting you can do what you want.

    It's easy to Change the BIOS Password by resetting it with the Mainboard battery (disable…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. heartbeat policy option

    I would like to suggest that with heartbeat enbaled that when someone is Red or no heartbeat that there is an option to either block internet access, or to drop next policy in the list

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. We need a "Blacklist Group" object that we can populate with individual IP's or an IP range.

    We need a simple blacklist "group" object that we can pop in either individual IP's or an IP range. This would be used for blacklisting IPs and blocking/drop all traffic from these IPs before they hit the filter rules. Similar to how the country blocking works but with out own defined list of IPs, IP ranges and even domains (top level and subdomains).

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. Network Protection: Automatic blacklisting

    Please make it possible to set rules to automatically add ip addresses to a blacklist for a specific time period if they are exceed the specified packet limits set in Anti DoS!

    E.g.:

    2000 packets/sec over limit -> 30 seconds blacklist
    5000 packets/sec over limit -> 60 seconds blacklist
    10000 packets/sec over limit -> 120 seconds blacklist

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. Allow Firewall rules to be members of multiple groups

    Allow Firewall rules to be members of multiple groups so they can be associated with several rule sets.
    Or even allow them to be given tags so all rules can be listed that have a particular tag assigned.
    Sometimes it a firewall rule does not just fall under one group of rules.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. Network Protection: Use Suricata for IPS

    I think it could be worth a look at, unless Snort comes up with a multfhreaded version.
    http://www.openinfosecfoundation.org/
    http://suricata-ids.org/

    43 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    8 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. Sophos UTM - VoIP - SIP ALG checkbox to enable or disable this feature. Every xDSL-Router has this option.

    Many VoIP provider recommend for their ATA-Fax-Boxes to disable the SIP ALG function, to reduce the noise during transmitting a fax.
    In the Network Prottection / VoIP dialog of the Sophos-UTM, I would enjoy to see this option as a simple Checkbox.

    17 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. Country Blocking Problem

    Hi everybody,
    Country Blocking is not working correctly. Sometimes ip adresses are not resolved to a country, they appear in the log files as "unknown" and they were not blocked. So some days ago someone tried to connect to our ftp server from sweden, althogh every country is blocked accept of germany.
    Please fix this or integrate a button "unknown" -> deny or something similar.
    Sorry for my englisch ;-)

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. Connection Tracking Helper SFTP

    A customer want to use a sftp Connection from extern to his Company. For this he install an QNAP NAS and activate SFTP over Port 2112 (SFTP Port 22 is not avaible).

    The Problem is that when we want to connect extern the NAT and Firewall Rules is working, but SFTP Need more then the one port.

    For FTP the solution and Routing works. But SFTP didnt work, For FTP you can use the Connection track helper, but SFTP can not use with that.

    So please activate sftp to work with Connection track helper to work with the different ports.

    15 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  15. Networking: RPC Connection Tracking Helper

    A port object that automatically unlocks the associated high ports for the RPC mapper, so you must not unlock all high ports for the RPC services.

    37 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. add support for regular URL address such as www.example.com for country blocking exceptions

    When working in country blocking exceptions, the only way to get it work is to enter a websites ip address. Adding support for regular an address such as www.example.com.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  17. Enable country blocking by time.

    We're trying to find more creative ways to block VPN services after hours at our school and the country blocking will definitely help, but since we have many foreign students are can't have this enabled during school hours - this country blocking would definitely help us but it doesn't have the option for schedules within the option itself or in exceptions.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. add reject-with tcp-reset function

    The "reject" action in the paket filter rules sends an ICMP - Destination Unreachable to the rejected Host. It seems that most applications ignore this ICMP. Therefore other Firewall Systems implemented the "reject-with tcp-reset" function. This way a tcp session will be ended, and hopefully the Applications will not have to wait that long until it realizes that the connection is not permitted.
    This is needed because many computers and other devices suffer from network hangs because they try to connect to forbidden hosts.

    12 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  19. Networking: Forward Ping for Devices behind UTM

    In V8 it was possible to Ping Devices behind the UTM Device, in V9 it is Disabled and could not be Enabled with a Packet filter Rule.

    This function is useful for us and our Customer which has Devices behind the UTM in his own DMZ that should be monitored by Monitoring Systems etc.

    18 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →

    While already possible by disabling the built-in ICMP handlers and creating your own packet filter rules for explicitly allowing such traffic, we will review the operation of this behavior and if we can refine the GUI here.

  20. Country Blocking Exceptions by source MAC addresses

    Possibility to create a Country Blocking Exceptions with a defined source MAC address. In the normal Firewall rules this is already possible.
    Thanks.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.