I need a Report that list me who send a Mail, when the mail was send (Date and Hour), the recepient, was the mail encrypt (with PGP or SMIME), was the attachment encrypt.
I need it for IT revision.

based on a per-domain profile or in general, we can control what kind of attachment will pass the AxG with the MIME-Type settings.

It would be a great enhancement if we can control this user based.

so administrator can seperately choose either all embedded objects or only activex, java or flash. Currently you can only choose all of them at once.

My dedicated and colocation customers are constantly asking me to block or unblock this port, or that port. If I could only allow him to log in and manage is own rules for his one or two IP addresses (or range), that would really be awesome!

Add support for storage devices such as iSCSI, so that Astaro can write long term data such as logs, reporting, and quarantine data to storage off of the appliance. this would allow for better recovery in the event of hardware failure.

Hi,

i am missing some feature requests from the past, which where opened in the myastaro partner support form for feature requests.
Let´s try again:

I have a suggestion from a customer regarding static dns entries.
Here you have the chance to submit an ip-adress for a hostname. But only one ip per hostname.
In the RFCs multiple ips are allowed for one hostname.
It would be nice to be able to configure this on the appliance too.

Regards
Daniel

While the SSL VPN in ASG works great using the Tunnelblick client on MAC, it would be nice to have it officially integrated.

Granted it's not hard to download the configuration and use it with Tunneblick, but having it all available right from UserPortal just like the Windows SSL VPN Client would make it even better.

We have several sites where we use cacti to monitor servers behind the UTM.

We can use Cacti to monitor the UTM, but if we want to monitor "sub-servers" we need to setup a VPN. That creates a lot of extra work for the amount of sites we would need to setup VPN connections for.

I'd love to see an extra screen/tab on the UTM where I can add the community details for these "sub-servers" and then just point cacti to the UTM, and give it the community name of the "sub-server", and then report that way.

I would be nice if Astaro can strip a cert from incoming POP3/imapi email

Relevant thread
http://www.astaro.org/astaro-gateway-products/mail-security-smtp-pop3-antispam-antivirus/26425-7-403-unable-automatic-extract-c-mime-certificates.html#post115149

The decision was made to enable many snort rules. Now, the admin must change them one at a time. It would be advantageous to be able to import a list when we choose to disable a rule number.

Presently, the only Remote Access available to backend groups (except RADIUS) is for the SSL VPN.

While researching a UTM, I came across an IM chat logger. This will be a nice feature for Sophos UTM to have so I can inspect chat sessions for company violations/data leakage.

Open or closed a remote access or site-to-site tunnel via time rules. In banking sector you need this feature.

Extend the DHCP server to support IP Ranges from the Additional Addresses

from other categories (like "top blocked users") we're able to click on the name to see the categories, or click on the categories to see the names.
When a virus has been blocked, we can't see from which site the virus came or which user was connecting to the website containing the virus.
Same goes for the blocked extensions: we can't see who tried to download the content that was blocked.

Request the option to send an email alert to the admins when a user visits a website that has a virus detection.

...after X attempts of trying a not allowed ("content blocked") URL.

- Account should be disabled for X minutes or
- Admin enables the account

This would be great ;-) Thanx!

Proper regexp support would be very useful, basically everywhere where it is applicable, but especially in mail black- and whitelists. For example, many mailing lists and newsletters use VERPs (ie. unique senders that make their lives much easier) which makes it impossible to add these to whitelists. Sometimes whole threads of these mails are falsely caught by the spam filter.

Idea:
Link IPS and Malware events in reports to a online database with a description of the event if available.

Reason:
It's always a lot of work to find out the reason of IPS events as "SHELLCODE x86 inc ecx NOOP" or to find a description of a Virus like "HTML/Infected.WebPage.Gen"

Benefit:
It would ease administrators lives to easily find out, which behavior the security events triggered or what they even mean.