SG UTM
Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.
-
"Reset to Defaults" - Button for IPS and WEB-Contentfilter
Would be riskless, do an automated backup first !
2 votes -
Run on non-x86 hardware for lower energy consumption reasons like the guruplug for home use.
Run on non-x86 hardware for lower energy consumption reasons like the guruplug for home use.
4 votes -
Networking: DHCP Release for Interfaces
Like an interface configured as a DHCP Client that has the "Renew" button. I'd like to see the addition of a "Release" button that performs a proper DHCP_RELEASE such as performed by "dhcpcd -k <interface>"
9 votes -
Logging: view IPSec VPN log file
The IPSec VPN live log does contain the connection name
2011:02:11-14:15:30 HOSTNAME-1 pluto[xyz]: "SABCVPN" #[number]: initiating Quick Mode.....
but view "view log file" you only get
2011:02:11-14:15:30 HOSTNAME-1 pluto[xyz]: "SREFjYhIsAnhzG_3" #[number]: initiating Quick Mode.....
so you have to lookup the REF yourself AND it is much less "readable" as the connection name itself in the log file.
I suggest, that the connection name is also contained in the "plain" ipsec vpn logfile, and not only displayed in the live log.
4 votes -
Web Protection: Add a Web Manager (similiar to the Mail Manager)
It would be nice to have a Web Manager interface that is similar to the Mail Manager. It basically would have the same functionality but would be based on individual URLs and sites visited instead of individual emails. It would include the ability to add an individual URL or domain to a global or policy specific blacklist or whitelist in the same way an individual quarantined email can be deleted, released and so on.
Management wants an easy way to add individual URLs and sites to blacklists and whitelists.
2 votes -
Web Security: Customizable Content Filter Override Time
Currently the bypass filter time limit implemented in Version 8 only allows you to bypass a website for 15 minutes. However, according to the Child Internet Protection Act, schools and libraries that receive funding MUST allow all websites to be unblocked for adults for the duration of their session. Currently our Library can not use the Astaro until we can find a way to extend this time limit for staff bypassing websites beyond 15 minutes to approximately 90 minutes. A field where a variable time limit can be entered would be good so that libraries or other educational institutions can…
8 votes -
Wireless: Save passwords across different profiles
It would be nice to save one password for every crypt-method.
I ve to switch between uncrypt (for the nitendos of the kids) and wpa2 for normal use. The problem is that the password must be configured every time after a change of the method.1 vote -
RED to working thru captive Portals
I travel alot... and I would love to extend my network into my hotel room. Systems like iBahn, which is found in alot of US hotels use a captive portal, RED needs a way to work with those portals and then connect to the gateway unit... even if it means a little web app in the unit its self... PLEASE work on this...
5 votes -
HTTPS Reverse Proxy
When using ASG to terminate SSL sessions (SSL Offloading), it’s sometimes needed to get the client certificate (mutual authentication) and pass some SSL info such as SSL Session IDs and Client-SSL Certificate information (e.g. certificate fingerprint and serial number) inside HTTP header to be used and processed by the protected web applications.
An example of this use; let’s assume that I have a plain-text web application with certificate-based user authentication, so, it’s necessary to have such features in my WAF appliance.21 votes -
2 votes
-
Alert on High Utilzation
Had a situation were an Astaro process was over 90 % for over a day. Would like to be notified with that. One option would be for the Astaro to include the low high and average percentage used for the day. The other would be to alert the admin when a process is running over 90% for X amount of minutes.
3 votes -
Backup MX
Enable SMTP (or SMTP Profile) to be used as backup MX. It just spools mails and sends it to external mailservers. Would be nice to have a per domain settings how long a mail should remain in spool until it gets sent back and what are the retry intervalls to send to a external host.
12 votes -
Reporting: Display VPN traffic usage of past 24 hours
The VPN traffic should be counted for 24 and not only after a logout of the user.
4 votes -
Support Vodafone VDSL
Astaro should also support Vodafone VDSL (VLAN ID 132) in WebAdmin
3 votes -
Web Protection: Per-User Bandwidth quotas by Category
– like entertainment (200 MB), Educational (100MB) etc… usage assignment to users.
4 votes -
Quarantine Report Plain Text
Because the quarantine report of ASG / Mail Security version 8 uses PNG-files it looks bad in mail-clients that doesn't support PNG-files, e.g. Lotus Notes version 7. A option to send quaratine reports as plain text mails (not HTML) would solve that problem.
11 votes -
Reporting: Enhance Flow Monitor with URL tracking
It would be useful to add a column in the bandwidth monitor called URL, so if the traffic is HTTP or FTP it would be very easy to see which sites are eating bandwidth by tracking them in real time.
1 vote -
WebAdmin / User Portal Help access control
Would like to have the possibility to control the accessibility of WebAdmin / User Portal Help, because right now it is accessible without a valid authentication.
I think the best way would be to get only access to the online help with a valid authentication and maybe also by a selection of allowed users/groups/etc..4 votes -
Reporting: Bandwidth Accounting by RED Device
For MSPs it would be very helpful to make a reporting possible based on traffic per Interface / RED Device.
They would like to have the possibility to see how much and what kind of traffic was generated from each RED-Interface.2 votes -
Networking: Time-Based network interface enable / disable
Switch a whole interface on or off based on time conditions (i.e. guest network interface switched off during non-office hours)
2 votes
- Don't see your idea?