SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Reporting: Top Blocked Viruses & Extensions

    from other categories (like "top blocked users") we're able to click on the name to see the categories, or click on the categories to see the names.
    When a virus has been blocked, we can't see from which site the virus came or which user was connecting to the website containing the virus.
    Same goes for the blocked extensions: we can't see who tried to download the content that was blocked.

    7 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  2. Notifications: Virus Detection Email Alert

    Request the option to send an email alert to the admins when a user visits a website that has a virus detection.

    16 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  3. Web Gateway: Cool off period after too many "content blocked" attempts

    ...after X attempts of trying a not allowed ("content blocked") URL.

    - Account should be disabled for X minutes or
    - Admin enables the account

    This would be great ;-) Thanx!

    2 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. Quarantine Report: Local Language Support

    As requested by many users an option to send localized versions of the Quarantine Reports would be really nice for non English speaking users.

    39 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    7 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  5. Mail Security: White / Black list Regular Expressions (REGEX) Support

    Proper regexp support would be very useful, basically everywhere where it is applicable, but especially in mail black- and whitelists. For example, many mailing lists and newsletters use VERPs (ie. unique senders that make their lives much easier) which makes it impossible to add these to whitelists. Sometimes whole threads of these mails are falsely caught by the spam filter.

    2 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
  6. Reporting: Link IPS, and Malware events to description

    Idea:
    Link IPS and Malware events in reports to a online database with a description of the event if available.

    Reason:
    It's always a lot of work to find out the reason of IPS events as "SHELLCODE x86 inc ecx NOOP" or to find a description of a Virus like "HTML/Infected.WebPage.Gen"

    Benefit:
    It would ease administrators lives to easily find out, which behavior the security events triggered or what they even mean.

    5 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →

    We are planning to integrate more tightly with Sophos Labs, this feature will be possible during that project, in an as-yet to be determined release.

  7. Configuration Best-Practices Auditor

    I have seen a lot of ASG systems out there, which have use a insecure or not (possible) optimal configuration in ASG. Some other manufacturers will bring up while configuration already a warning, when a setting may affect system security.

    It would be nice to have a possibility to start a basic system configuration checker, which will check the configuration against some "best practice" recommendations and generate a little audit report with found issues, a small explanation and a recommendation to make it better.

    Issues could be (to list some...)
    - inappropriate configured proxies with access from ANY networks
    -…

    11 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
  8. Mail Security: Blacklisted Sender Options

    Currently, any mails received from an e-mail address in the sender blacklist (under Mail Security / SMTP / Anti-Spam) are silently dropped.

    How about providing an option where you can choose to do the following:

    1) Silently drop / blackhole the email (current functionality)

    2) Quarantine the email so the end user can choose to release

    3) Bounce the email to the sender with a customisable message

    4) Redirect the email to another destination address.

    18 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. LCD-Display Configuration via WebAdmin

    It would be usefull to configure the output for a small LCD-Display using the webinterface.
    I m using a fanless system without monitor.

    3 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
  10. Network Security: Automatically add hosts to IPS Performance Tuning

    For example, a host entered in the 'Host list' on the 'Routing' tab of 'SMTP' should automatically be put into 'SMTP servers' on the 'Advanced' tab of IPS.

    A host used in a 'DNS request route' should automatically go into the 'DNS servers' box.

    On the 'Global' tab of IPS, don't allow an 'Interface (Network)' to be put into the 'Local networks' box if the interface is a DSL or modem type; at least warn that the admin should not put a public network into the box.

    Add Remote Gateways to the IM/P2P skiplist.

    Etc.

    1 vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  1 comment  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. Management: Archive backups like logs

    UTM only supports automatic backups sent by email or to a UTM Manager repository.
    It would be great to export them via SCP, FTP, Network Share like log files can.

    30 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    10 comments  ·  Management  ·  Flag idea as inappropriate…  ·  Admin →
  12. MailSecurity: Queue delays should be configurable

    Please, let a way to configure the delays for queued Email managment (retry frequency, retry duration, etc...)

    4 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. Web Protection: Improve Localization of Messages

    I would be nice to be able to better translate the web proxy messages. Currently, if you translate it to spanish, there are still english messages that are not appropiate for foreign language users.

    5 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. Reporting: SNMP Trap for File-Scanning Oversize Files

    I would like an SNMP trap and/or email sent when a user requests a file that is scanned by the anti-virus system, but is larger than the threshold.

    This way I can gauge the size of the files that are being downloaded and also know if my threshold is too low.

    My BlueCoat Proxy AV will send an email and SNMP trap such as:

    Cause: Maximum file size exceeded (engine error code: 0x00000000)

    File has been passed through unscanned.

    2009-06-04 11:39:13-04:00EDT
    Hardware serial number: xxxxxxxxxx
    ProxyAV (Version 3.2.2.1(36678)) - http://www.BlueCoat.com/
    Machine name: ProxyAV
    Machine IP address: xx.xx.xx.xx
    Server: xx.xx.xx.xx
    Client:…

    3 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  SNMP Monitoring  ·  Flag idea as inappropriate…  ·  Admin →
  15. VPN: Backend Authentication Support for PPTP

    Currently astaro support only RADIUS and LOCAL authentication in PPTP VPN.

    Since Astaro is using the open source PPTP which is PoPToP, authenticating on AD, LDAP, and others is possible. Would be great to have this added.

    10 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  16. Management: Display SSH key fingerprint in WebAdmin

    This is a (very) minor feature. It would be nice if the SSH fingerprint would be available somewhere in WebAdmin (preferably under the Management->System Settings->Shell Access tab). This way, if the WebAdmin certificate is already trusted, the fingerprint could be compared by the administrator to the one reported by the ssh client instead of just blindly accepting it (which is a security problem).

    2 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
  17. Logging: Restore Logs into new Installation

    When you install a new server, all logs are lost since the logs remain at the old server.

    11 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Logging  ·  Flag idea as inappropriate…  ·  Admin →
  18. Core: Database API

    Would like an API into the database so to pull stats for mail users into 3rd party application

    5 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  19. Installer: Allow custom Partitioning

    Allow to split the ASG installation on more than one HDD. ie mount /var/log partition on a separate hdd /dev/sdb1.

    4 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
  20. Large SSL certificate sizes support

    I would like to be able to actually control the bit size limit if the certificate and ca for the ssl vpn feature like (4096)+ bit length

    3 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.