SG UTM
Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.
-
MAC white list for obtain IP from DHCP server on UTM SG
Hello Sophos Team,
With hundreds devices in a company, it will take a lot of time to add each host MAC and IP with static mapping option. We need some features that will allow only known MACs to obtain IP addressed from DHCP pool on UTM SG device.
Thank you for your cooperation and hope to see it come true in future.1 vote -
XG 135 to support half duplex
Hello Team,
We have customer here requesting for XG 135 to support half duplex speed interface.
For your assistance please. Thank You.2 votes -
add new bandwidth monitor based on rulls and shapers
we would like to have a real time reporting of bandwidth based on shapper and firewall rule
as we create the shaping of bandwidth and we apply that on firewall rule but after that we can't see what is the real traffic for this rule specially when we dedicate a bandwidth for IPsec VPN or Voip1 vote -
sd wan
Please tell us does Cyberoam supports SD WAN Feature.
Fortigate UTM supports same.
Secure direct Internet access for Cloud Applications for
improved latency and reduced WAN cost spending
Effective, cost-efficient and high performance threat
prevention capabilities
WAN Path Controller and Link Health Monitoring for better
application performance
Security Processor powered industry’s best IPsec VPN and SSL
Inspection performance
Centralized Management and Zero Touch deploymentOur clients are asking for SD Wan feature.
Please update us for same.
20 votes -
UTM Home: It is VERY hard as a new person to find a hardware solution for entry into Sophos solutions.
UTM Home: Please maintain a DIY tutorial and keep it up to date.
Reason: It is VERY hard for a new person to find a hardware solution for entry into Sophos UTM Home (which would likely lead to future sales]. Searches are not likely to allow a person to get relevant information that match both hardware recomendations and accurate configuration for the current version.
eg: It is very hard to match a low powered CPU to Sophos requirements for the UTM home features and size required. Intel has very lousy naming conventions for non i3/i5/i7 CPUs.3 votes -
Unable to generate SMS alert if disk is full and no auto rotation for logs creation
Dear Team,
We are using Cyberoam Appliance CR200iNG, but there is no below features available in it.
Ticket no. - 8298226
(1) Unable to generate sms if disk is full and logs generation not happened on rotation basis i.e. if duration is set for 2 months and it is full in 1 month then logs should be generated of 31st days data and deleted 1st day data, which is not happening.Pl check above features and do the needful
Thanks,
Tejas
089800379402 votes -
New hardware ! New HCL
For a long time there was no update on compatibility of iron. The new hardware already has already updated equipment with new drivers. Please add drivers for Lenovo SR530,
3 votes -
remote power on
most of our SG's are in a datacenter. It would be nice to have a feature to power off/on a UTM (like the old HP ILO of Celestix IPMI interface).
If an UTM somehow is powered off we now need local support in the datacenter to do a powercycle.9 votes -
503 error
Hello Team
I hope the OS will be improved that 503 error is not generated.
A workaround is introduced below URL for this problem.*UTM WebAdmin unavailable due to error: 'Service Temporarily Unavailable'
https://community.sophos.com/kb/en-us/1190262 votes -
Add driver support for Intel X710 Virtual Function
Add kernel support (i40evf) for newer Intel X710 Virtual Function. Actually, there is a driver for older X520 Intel Virtual Function (ixgbevf), but no module for newer cards... It allows to use SR-IOV in virtualized environment, which provides a huge performance boost on network adapters supporting it.
Intel provides a configuration guide to use SR-IOV with X(L)710 cards :
https://www.intel.com/content/www/us/en/embedded/products/networking/xl710-sr-iov-config-guide-gbe-linux-brief.htmlThanks,
Nicolas6 votes -
Firmware-Fallback
After the momentary dissaster with 9.410 (and 9.411) it would be great to have the possiblility to switch back to the latest working version without any factory-reset.
Two different partitions. If the update goes wrong, switch back to the functionaly version.40 votes -
Users status
There should be one feature or option to set the users status change automatically based on given schedule.
3 votes -
A way to show SFP module details from the GUI or via the shell console
A way to show SFP module details from the GUI or via the shell console
4 votes -
Implement Hardware management by IPMI, SNMP, Syslog etc..
Enteprise class ASG and XG hardware should have more useful hardware management. IPMI, Watching CPU/Memory module status, SMART on HDD, power condition about board.
And We also need SNMP monitoring and IPMI event store to watch hardware nonfunctional event.
3 votes -
Host Virtual Appliances for Configuration Purposes
If you could host a virtual appliance that mimicked the functionality of our HW, we could set up and (to a limited degree) test configuration changes or prepare for new hardware, without taking existing appliances off-line. We could then backup the virtual appliance, load settings onto our live one, and get it running with minimal tweaking. If it didn't work, we could quickly revert back with a saved backup from the live HW, and trouble-shoot on the virtual one.
2 votes -
Power supply failure logging and notifications
For UTMs with dual power supplies, a single PSU failure is indicated via audible alarm and blinky light.It would be great to have this condition logged, and to have a new notification category. This way customers could parse logs/messages/traps and catch failure conditions quickly vice relying on audio/visual cues.
3 votes -
Sophos Management Appliance SNMP Monitoring
Hi,
A Platinum customer has requested that we have a SNMP Monitoring feature that we can set/enable within the Sophos Management Appliance (SMA). This does exist on the Web Appliance's but not on the SMA.
They would like this feature so they can be informed of the Health of the device as they recently had an issue where it ran out of resources (backed-up data since 2013).
Regards,
7 votes -
Remove support for TLS 1.0/Allow it to be disabled.
PCI scans that see a remote access port open to the internet fail because the appliance still supports TLS 1.0. I have to dispute this every time, and it is a real hassle.
89 votes -
Request to fully support Skype for Business on the Web Appliance
Request to fully support Skype for Business on the Web Appliance
5 votes -
The UTM should have a capability to restart the red device that it is managing...
Today our Sophos Red 50 cannot provide internet access to networks behind it but we can still connect through tunnel and can view networks behind. After restarting the RED it goes back to normal but the thing is we have to go on site to unplug the unit physically. As per your support, currently there is no way we can just restart the RED remotely even if connection to UTM is still up.
2 votes
- Don't see your idea?