SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Chronological Mail Report per User

    I need a Report that list me who send a Mail, when the mail was send (Date and Hour), the recepient, was the mail encrypt (with PGP or SMIME), was the attachment encrypt.
    I need it for IT revision.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. MailSecurity: User based attachment control

    based on a per-domain profile or in general, we can control what kind of attachment will pass the AxG with the MIME-Type settings.

    It would be a great enhancement if we can control this user based.

    9 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. Active Content Removal Options

    so administrator can seperately choose either all embedded objects or only activex, java or flash. Currently you can only choose all of them at once.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. Network Security: User-Customizable Packet Filter Rules

    My dedicated and colocation customers are constantly asking me to block or unblock this port, or that port. If I could only allow him to log in and manage is own rules for his one or two IP addresses (or range), that would really be awesome!

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. Logging/Reporting: support SAN/NAS storage

    Add support for storage devices such as iSCSI, so that Astaro can write long term data such as logs, reporting, and quarantine data to storage off of the appliance. this would allow for better recovery in the event of hardware failure.

    9 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Logging  ·  Flag idea as inappropriate…  ·  Admin →
  6. Multple Address Support for Static DNS Entries

    Hi,

    i am missing some feature requests from the past, which where opened in the myastaro partner support form for feature requests.
    Let´s try again:

    I have a suggestion from a customer regarding static dns entries.
    Here you have the chance to submit an ip-adress for a hostname. But only one ip per hostname.
    In the RFCs multiple ips are allowed for one hostname.
    It would be nice to be able to configure this on the appliance too.

    Regards
    Daniel

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  3 comments  ·  Networking  ·  Flag idea as inappropriate…  ·  Admin →
  7. VPN: Officially Integrate Tunnelblick Mac SSL VPN

    While the SSL VPN in ASG works great using the Tunnelblick client on MAC, it would be nice to have it officially integrated.

    Granted it's not hard to download the configuration and use it with Tunneblick, but having it all available right from UserPortal just like the Windows SSL VPN Client would make it even better.

    22 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  8. Networking: SNMP Support for Servers Behind Astaro

    We have several sites where we use cacti to monitor servers behind the UTM.

    We can use Cacti to monitor the UTM, but if we want to monitor "sub-servers" we need to setup a VPN. That creates a lot of extra work for the amount of sites we would need to setup VPN connections for.

    I'd love to see an extra screen/tab on the UTM where I can add the community details for these "sub-servers" and then just point cacti to the UTM, and give it the community name of the "sub-server", and then report that way.

    26 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    11 comments  ·  SNMP Monitoring  ·  Flag idea as inappropriate…  ·  Admin →
  9. 6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. Add Import/Export to 'Manual rule modification' in IPS

    The decision was made to enable many snort rules. Now, the admin must change them one at a time. It would be advantageous to be able to import a list when we choose to disable a rule number.

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. VPN: Active Directory / LDAP authentication for L2TP, IPsec & Cisco Client

    Presently, the only Remote Access available to backend groups (except RADIUS) is for the SSL VPN.

    39 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    11 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  12. Web Protection: Instant Message (IM) Chat Logging

    While researching a UTM, I came across an IM chat logger. This will be a nice feature for Sophos UTM to have so I can inspect chat sessions for company violations/data leakage.

    42 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    9 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. VPN: Time-Based Tunnel Rules

    Open or closed a remote access or site-to-site tunnel via time rules. In banking sector you need this feature.

    10 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  14. Networking: DHCP Server for Additional IP's

    Extend the DHCP server to support IP Ranges from the Additional Addresses

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Networking  ·  Flag idea as inappropriate…  ·  Admin →
  15. Reporting: Top Blocked Viruses & Extensions

    from other categories (like "top blocked users") we're able to click on the name to see the categories, or click on the categories to see the names.
    When a virus has been blocked, we can't see from which site the virus came or which user was connecting to the website containing the virus.
    Same goes for the blocked extensions: we can't see who tried to download the content that was blocked.

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  16. Notifications: Virus Detection Email Alert

    Request the option to send an email alert to the admins when a user visits a website that has a virus detection.

    16 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  17. Web Gateway: Cool off period after too many "content blocked" attempts

    ...after X attempts of trying a not allowed ("content blocked") URL.

    - Account should be disabled for X minutes or
    - Admin enables the account

    This would be great ;-) Thanx!

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. Mail Security: White / Black list Regular Expressions (REGEX) Support

    Proper regexp support would be very useful, basically everywhere where it is applicable, but especially in mail black- and whitelists. For example, many mailing lists and newsletters use VERPs (ie. unique senders that make their lives much easier) which makes it impossible to add these to whitelists. Sometimes whole threads of these mails are falsely caught by the spam filter.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
  19. Reporting: Link IPS, and Malware events to description

    Idea:
    Link IPS and Malware events in reports to a online database with a description of the event if available.

    Reason:
    It's always a lot of work to find out the reason of IPS events as "SHELLCODE x86 inc ecx NOOP" or to find a description of a Virus like "HTML/Infected.WebPage.Gen"

    Benefit:
    It would ease administrators lives to easily find out, which behavior the security events triggered or what they even mean.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →

    We are planning to integrate more tightly with Sophos Labs, this feature will be possible during that project, in an as-yet to be determined release.

  20. Configuration Best-Practices Auditor

    I have seen a lot of ASG systems out there, which have use a insecure or not (possible) optimal configuration in ASG. Some other manufacturers will bring up while configuration already a warning, when a setting may affect system security.

    It would be nice to have a possibility to start a basic system configuration checker, which will check the configuration against some "best practice" recommendations and generate a little audit report with found issues, a small explanation and a recommendation to make it better.

    Issues could be (to list some...)
    - inappropriate configured proxies with access from ANY networks
    -…

    11 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.