SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Create Filter Action Parts in Web Security

    This idea was already "Accepted (Long Term)" by the development team, but I wanted to throw it out here to see if anyone thinks it deserves quicker action...

    Rather than stop at adding a global blacklist, why not change the fundamental structure of Filter Assignments to have the different sections selectable instead of just an entire Filter Action.

    Instead of creating complete Filter Actions, it would be great to have Filter "Atoms" that are combined in a Filter Assignment. Just as a first thought, those sections could be 'Category Filter', 'Block these URLs/sites', 'Always allow these URLs/sites', 'Blocked file extensions',…

    10 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. Logging: Global Search of Log Files

    Add the ability to globally search all logs for matching strings from a single entry box for a specified date/time range.

    50 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    7 comments  ·  Logging  ·  Flag idea as inappropriate…  ·  Admin →
  3. VOIP Security: Customizable SIP port

    Some VOIP providers use a non standard SIP port number. I also imagine some companies using VOIP would like to use a non standard SIP port number given the chance.

    The request is to allow the port that the SIP service monitors to be changed from the default port of 5060.

    11 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Networking  ·  Flag idea as inappropriate…  ·  Admin →
  4. Mailsecurity: Prevent admin from downloading mails

    Even though I'm the admin of our groupware-server, I cannot read e-mails of other employees (unless they themselves gave me proxy-rights to their mail-account or shared one of their mailfolders with me). But I can download all e-mails which were put in quarantine. German law prohibits employees (including admins) from reading other people's mails. You could be jailed if you do so.
    I would like to have the mail download feature disabled. Even better if mails were stored in an encrypted format an the ASGs hard drive, to make it impossible for admins to read other people's mails.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. Mail Protection: SMTP relay by domain

    Would be extremely beneficial to incorporate a list of allowed domain names to relay for authenticated users.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. VPN: DHCP Static Mappings for Remote Access Users

    We're talking about incoming VPN sessions & what IP address is assigned to that session. What does it matter? If you can assign the session an IP address within your subnet - this makes life easy for everybody. (i.e. peole can map network drives from home) In v7.4, as long as the Astaro is NOT functioning as your DHCP server - you can point remote access VPN session to your internal DHCP server for an assignment. (i.e. this mean people can map drives) However, 90% of my customers (after spending big $ on Astaro) want the Astaro controlling DHCP (and…

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Networking  ·  Flag idea as inappropriate…  ·  Admin →
  7. DHCP server Ping Ahead

    Ping ahead removes the problem of two devices getting the same IP address if one has a static address.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. Mail Protection: Forward POP3 Emails via SMTP to internal Server

    There are still a many customers out there which use POP3 Mailboxes. If a customer want's to connect these POP3 mailboxes to an internal Microsoft Exchange server, they always need to purchase an add-on tool which needs to be licensed on a per user basis. The tool downloads the POP3 Emails and forwards them 1:1 to the internal Server via SMTP. Each POP3 Mailbox needs to be configured via server, username and password and an SMTP email address where the email gets forwarded to.. Integrate this add-on feature and minimize the cost and effort needed to install, manage and maintain…

    49 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. MailSecurity: Spam Action Forward

    The Mail Manager should have the ability to forward a message in the quarantine to a specified address. This could be used to correct invalid recipients, and/or "send back" messages to the sender in a sort of crafted bounce.. Provide administrators with more choice in managing mail and messages.

    31 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. MailSecurity: Whitelist Per Profile

    It should be possible to maintain a sender whitelist per profile (vs just per user in the portal), since we already have such functionality for blacklisting.... Better flexibility and configuration options.

    26 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. Web Security: RTSP Support / Skipping

    Currently Real Time Streaming Protocol is not able to be properly handled by the proxy (such as apple.mov quicktime keynote speeches). Add a mechanism to either proxy this traffic correctly, or just skip it from the scanning to allow it to operate properly with the client.. Extends the streaming support of our proxy to avoid admins needing to remove users entirely or live with certain sites / streaming not working when the proxy is enabled. Mantis: 0009463

    21 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    8 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. WebAdmin: Packet Filter Group Editing

    Allow the adjustment/editing of the packet filter groups. Currently it is not possible to edit/change the color, edit the name, delete a group, and otherwise work with this feature.. Allows more polish of this area by completing the abilities, allowing for better management of pf rules as a result of having better group customization.

    17 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    6 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. Notifications: Notify on IP address conflicts

    Implement http://ipwatchd.sourceforge.net/

    Track network issues directly on the gateway!

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  14. Reporting: Customizable Executive Report Sections

    The admin should be able to select the type of information which should be included in this report, such as removing various areas or sections.. Ensures only the desired information is sent out.

    15 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  15. Authentication: Group Support for Radius Authentication

    Add Group support for Radius authentication by defining an backend match for a certain Radius attribute like 'NAS-Identifier' if this is set to a predefined value and the request succedes, than the user is also mapped to this group. restore ASG V6 functionality and better integrate with radius installations

    18 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  16. Authentication: Email address to LDAP Query

    When using openldap (such as against lotus) add the ability to have astaro retrieve the mail address correctly, currently it is not retrieved.. More integration options with non-windows/exchange environments.

    10 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  17. UserPortal Mail Manager: Interactive White / Black Listing

    in the quarantine area add the ability to click on the sender and add them straight to the email blacklist/whitelist per user.

    copied from original FR system.

    Request Date: 11 Sep 2008
    Product: AxG (ASG, AWG, AMG)
    Priority: Medium
    Status: Accepted (Short Term)

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  18. Web Protection: Regular Expression (REGEX) Filtering of Content (ASG V6-style)

    For those of us who can't rely on the high miss rate of URL filtering, or who need to implement their own parameters, please allow local "regular expression" scanning of web content. It is possible to express patterns that are effective and not over-blocking. Options to include page block, pattern substitution, etc

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  19. Central Configuration Storage in HA Scenario

    In Astaro HA scenario, when web proxy is enabled, there are configuration discrepancies between the active and passive nodes. Though we advise users not to put proxy IP address or exclude Firewall IP while doing WebAdmin, it is still a good idea to have a Configuration Master.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
  20. WebSecurity: HTTP/S MIME-Type Whitelist

    As is possible with Mail Security, add the ability to the exceptions tab to "exempt" certain mime types from filtering.. Allows for MIME types to be removed from filtering and scanning to increase compatability with perhaps streaming we do not support natively, and balances the feature offerings with the mail security choices.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.