Option to disable the TLS 1.1 in email appliance

Hello Sophos Team,
With hundreds devices in a company, it will take a lot of time to add each host MAC and IP with static mapping option. We need some features that will allow only known MACs to obtain IP addressed from DHCP pool on UTM SG device.
Thank you for your cooperation and hope to see it come true in future.

Hello Team,

We have customer here requesting for XG 135 to support half duplex speed interface.
For your assistance please. Thank You.

we would like to have a real time reporting of bandwidth based on shapper and firewall rule
as we create the shaping of bandwidth and we apply that on firewall rule but after that we can't see what is the real traffic for this rule specially when we dedicate a bandwidth for IPsec VPN or Voip

Please tell us does Cyberoam supports SD WAN Feature.

Fortigate UTM supports same.

Secure direct Internet access for Cloud Applications for
improved latency and reduced WAN cost spending
Effective, cost-efficient and high performance threat
prevention capabilities
WAN Path Controller and Link Health Monitoring for better
application performance
Security Processor powered industry’s best IPsec VPN and SSL
Inspection performance
Centralized Management and Zero Touch deployment

Our clients are asking for SD Wan feature.

Please update us for same.

UTM Home: Please maintain a DIY tutorial and keep it up to date.
Reason: It is VERY hard for a new person to find a hardware solution for entry into Sophos UTM Home (which would likely lead to future sales]. Searches are not likely to allow a person to get relevant information that match both hardware recomendations and accurate configuration for the current version.
eg: It is very hard to match a low powered CPU to Sophos requirements for the UTM home features and size required. Intel has very lousy naming conventions for non i3/i5/i7 CPUs.

Dear Team,

We are using Cyberoam Appliance CR200iNG, but there is no below features available in it.

Ticket no. - 8298226
(1) Unable to generate sms if disk is full and logs generation not happened on rotation basis i.e. if duration is set for 2 months and it is full in 1 month then logs should be generated of 31st days data and deleted 1st day data, which is not happening.

Pl check above features and do the needful
Thanks,
Tejas
08980037940

For a long time there was no update on compatibility of iron. The new hardware already has already updated equipment with new drivers. Please add drivers for Lenovo SR530,

most of our SG's are in a datacenter. It would be nice to have a feature to power off/on a UTM (like the old HP ILO of Celestix IPMI interface).
If an UTM somehow is powered off we now need local support in the datacenter to do a powercycle.

Hello Team

I hope the OS will be improved that 503 error is not generated.
A workaround is introduced below URL for this problem.

*UTM WebAdmin unavailable due to error: 'Service Temporarily Unavailable'
https://community.sophos.com/kb/en-us/119026

Add kernel support (i40evf) for newer Intel X710 Virtual Function. Actually, there is a driver for older X520 Intel Virtual Function (ixgbevf), but no module for newer cards... It allows to use SR-IOV in virtualized environment, which provides a huge performance boost on network adapters supporting it.

Intel provides a configuration guide to use SR-IOV with X(L)710 cards :
https://www.intel.com/content/www/us/en/embedded/products/networking/xl710-sr-iov-config-guide-gbe-linux-brief.html

Thanks,
Nicolas

After the momentary dissaster with 9.410 (and 9.411) it would be great to have the possiblility to switch back to the latest working version without any factory-reset.
Two different partitions. If the update goes wrong, switch back to the functionaly version.

There should be one feature or option to set the users status change automatically based on given schedule.

A way to show SFP module details from the GUI or via the shell console

Enteprise class ASG and XG hardware should have more useful hardware management. IPMI, Watching CPU/Memory module status, SMART on HDD, power condition about board.

And We also need SNMP monitoring and IPMI event store to watch hardware nonfunctional event.

If you could host a virtual appliance that mimicked the functionality of our HW, we could set up and (to a limited degree) test configuration changes or prepare for new hardware, without taking existing appliances off-line. We could then backup the virtual appliance, load settings onto our live one, and get it running with minimal tweaking. If it didn't work, we could quickly revert back with a saved backup from the live HW, and trouble-shoot on the virtual one.

New SG / XG / RED with either integrated WAN Modem (for example DSL / Cable / Wireless) or with an Slot (like FleXiPort) that could handle WAN-Modem-Modules (DSL / Cable / Wireless like LTE, GSM, UMTS, etc)

For UTMs with dual power supplies, a single PSU failure is indicated via audible alarm and blinky light.It would be great to have this condition logged, and to have a new notification category. This way customers could parse logs/messages/traps and catch failure conditions quickly vice relying on audio/visual cues.

Hi,

A Platinum customer has requested that we have a SNMP Monitoring feature that we can set/enable within the Sophos Management Appliance (SMA). This does exist on the Web Appliance's but not on the SMA.

They would like this feature so they can be informed of the Health of the device as they recently had an issue where it ran out of resources (backed-up data since 2013).

Regards,

PCI scans that see a remote access port open to the internet fail because the appliance still supports TLS 1.0. I have to dispute this every time, and it is a real hassle.